search cancel

CVE-2022-42889 and Dollar Universe Application Server

book

Article ID: 252862

calendar_today

Updated On:

Products

CA Automic Dollar Universe

Issue/Introduction

The vulnerability was announced via https://nvd.nist.gov/vuln/detail/CVE-2022-42889

The vulnerability is caused with the use of Apache Commons Text 1.5 through 1.9.

Are Dollar Universe, DUX, Reporter, UVMS, UVC, DU Webservices  impacted by this vulnerability?

Environment

Dollar Universe v6.x

Resolution

The vulnerability has no impact on the following components:

  • Dollar Universe
  • DUX
  • Reporter
  • UVMS
  • UVC
  • DU Webservices