MidPoint Not Vulnerable to Spring4Shell
We interrupt your usual programming (again) to bring you this breaking news (again) about a dangerous and far-reaching vulnerability. This time it is CVE-2022-22965, a.k.a. “Spring4Shell”, a zero-day remote code execution vulnerability in Spring framework. Similarly to Log4Shell, midPoint is not vulnerable to Spring4Shell attack. However, there are some actions that you may need or want to take. […]