On March 31, 2022 a Critical vulnerability was identified (CVE-2022-22965) in the Spring MVC and Spring WebFlux frameworks for Java JDK9. A successful exploit of the vulnerability allows for remote code execution (RCE).
Our Software Engineering team has audited our code for all versions of VT Docs and VT Writer, both Cloud and On-prem, and determined that our products are NOT affected by this critical vulnerability.
Please feel free to reach out to our support team at support@visiblethread.com with any questions or concerns!