Are Utoolity apps affected by CVE-2022-22965 (Spring4Shell)?

This page provides information related to the recently published remote code execution (RCE) vulnerability affecting Spring:

Atlassian host products

Refer to the official documentation at https://confluence.atlassian.com/kb/faq-for-cve-2022-22963-cve-2022-22965-1115149136.html.

Utoolity apps for Atlassian Data Center / Utoolity apps for Atlassian Server

Not affected

All Utoolity Data Center and Server apps do not use the spring-mvc or spring-webflux dependencies and are thus not affected.

Utoolity apps for Atlassian Cloud

Not affected

All Utoolity Cloud apps do not use Spring and are thus not affected.

 

 

Atlassian®, Atlassian Bamboo®, Bitbucket®, Atlassian Crowd®, Confluence®, Jira®, Jira Service Management™, Opsgenie®, and Statuspage™ are registered trademarks of Atlassian.
Amazon Web Services™, AWS™ and the “Powered by Amazon Web Services” logo are trademarks of Amazon.com, Inc. or its affiliates in the United States and/or other countries.

Utoolity® is a registered trademark of Utoolity GmbH.
© 2024 Utoolity GmbH. All rights reserved.