From version 2.1
edited by nlo
on 20.12.2021, 18:30
Change comment: There is no comment for this version
To version 3.8
edited by gru
on 01.04.2022, 19:54
Change comment: There is no comment for this version

Summary

Details

Page properties
Author
... ... @@ -1,1 +1,1 @@
1 -XWiki.nlo
1 +XWiki.gru
Content
... ... @@ -1,10 +1,12 @@
1 1  {{info}}
2 +
3 +The {{formcycle/}} Versions 7.0.0 through 7.0.11 contain a version of the Spring Framework that contains the [[CVE-2022-22965>>https://tanzu.vmware.com/security/cve-2022-22965]] vulnerability disclosed on March 31st, 2022.
4 +The {{formcycle/}} Versions 7.0.0 through 7.0.6 use a version of Log4j that contains the [[CVE-2021-44228>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228]] vulnerability disclosed on December 10th, 2021.
5 +The {{formcycle/}} versions 7.0.0 through 7.0.7 use a version of Log4j that contains the [[CVE-2021-45046>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046]] vulnerability disclosed on December 14th, 2021.
6 +The {{formcycle/}} versions 7.0.0 through 7.0.8 use a version of Log4j that contains the [[CVE-2021-45105>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105]] vulnerability disclosed on December 18th, 2021.
7 +The {{formcycle/}} versions 7.0.0 through 7.0.9 use a version of Log4j that contains the [[CVE-2021-44832>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44832]] vulnerability disclosed on December 11th, 2021.
2 2  
3 -The {{formcycle/}} Versions 7.0.0 through 7.0.6 use a version of Log4j that contains the [[CVE-2021-44228>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228]] vulnerability disclosed on 12/10/2021.
4 -The {{formcycle/}} versions 7.0.0 through 7.0.7 use a version of Log4j that contains the [[CVE-2021-45046>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046]] vulnerability disclosed on 12/14/2021.
5 -The {{formcycle/}} versions 7.0.0 through 7.0.8 use a version of Log4j that contains the [[CVE-2021-45105>>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105]] vulnerability disclosed on 12/18/2021.
6 -
7 -Currently, we are not aware of any scenario where these vulnerabilities in {{formcycle/}} can be exploited. **We still recommend to upgrade to {{formcycle/}} [[Version 7.0.8>>doc:Blog.FORMCYCLE 708.WebHome]], which uses a new version of Log4j that no longer contains these vulnerabilities.**
9 +Currently, we are not aware of any scenario where these vulnerabilities in {{formcycle/}} can be exploited. **We still recommend to upgrade to {{formcycle/}} [[Version 7.0.12>>doc:Blog.WebHome]], which uses new versions of Log4j and the Spring Framework that no longer contain these vulnerabilities.**
8 8  {{/info}}
9 9  
10 10  {{info}}