Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Status
colourGreen
titleLAST TESTED ON CHECKMK 2.2.0P10p15


Panel
borderColorblack
bgColor#f8f8f8
titleTable of Contents

Table of Contents

Problem

Spring4Shell is a critical vulnerability. CVE-2022-22965 in Spring – the open-source Java framework. Using the vulnerability, an attacker can execute arbitrary code on a remote web server, which makes CVE-2022-22965 a critical threat, given the Spring framework’s popularity.

...

Checkmk is aware of the vulnerability and has completed verification that this issue does not affect checkmk Checkmk itself and the checkmk Checkmk appliance, as we are not using the spring framework in our products. 

...