Vulnerability Spring4Shell
The Spring Framework is an open source framework for the Java platform. In this environment, three security vulnerabilities became known in the last few days, registered under:
- CVE-2022-22950
- CVE-2022-22963
- CVE-2022-22965
These vulnerabilities currently compromise the security of Java applications. UTAX takes these security vulnerabilities very seriously and is checking to what extent its own offerings or partner products distributed by us are affected.
Affected products: Information sources & contact options (as of 14.4.2022)
- Kofax AutoStore | https://knowledge.kofax.com/General_Support/General_Troubleshooting/Kofax_products_and_Spring4Shell_vulnerability_information
The following products are not affected by the security vulnerabilities (as of 14.04.2022)
- All TA and UTAX MFP and printer as well as drivers and utilities
- ABBYY FineReader, ABBYY FineReader Server
- aQrate / MyQ
- Genius Bytes
- Forms4Work / Mercury
- PlanetPress Suite
- ScannerVision
- Scan2 OCR powered by ABBYY
- UTAX smart
We are in the process of examining further solutions and will publish further information here successively.