https://community.esri.com/t5/developers-questions/spring-framework-rce-cve-response/m-p/1159971#M6232 <P>We would be interested in a response to whether or not any Esri products are vulnerable to the recently announced Spring Framework RCE CVE (<A href="https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement)" target="_blank" rel="noopener">https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement)</A> and if so what mitigations / updates can be put in place to remediate the vulnerability.</P> Thu, 31 Mar 2022 17:43:23 GMT JohnSmith3434 2022-03-31T17:43:23Z https://community.esri.com/t5/developers-questions/spring-framework-rce-cve-response/m-p/1159971#M6232 <P>We would be interested in a response to whether or not any Esri products are vulnerable to the recently announced Spring Framework RCE CVE (<A href="https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement)" target="_blank" rel="noopener">https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement)</A> and if so what mitigations / updates can be put in place to remediate the vulnerability.</P> Thu, 31 Mar 2022 17:43:23 GMT https://community.esri.com/t5/developers-questions/spring-framework-rce-cve-response/m-p/1159971#M6232 JohnSmith3434 2022-03-31T17:43:23Z https://community.esri.com/t5/developers-questions/spring-framework-rce-cve-response/m-p/1160106#M6233 <P>So far, no information yet. The Security Team is still looking into the issue, Keep checking <A href="https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/spring-framework-rce-vulnerabilities/" target="_blank" rel="noopener">this Post</A> for updates.</P> Thu, 31 Mar 2022 22:00:36 GMT https://community.esri.com/t5/developers-questions/spring-framework-rce-cve-response/m-p/1160106#M6233 TonyContreras_Frisco_TX 2022-03-31T22:00:36Z