Hi, Does somebody have some background information about the vulnerability: CVE - CVE-2022-42889 The Apache Commons Text 1.9 is also used in the latest (8.1.21) Ignition version. Is this vulnerability a big risk for Ignition? Some of our customers are getting worried about this vulnerability. I…

[IGN-6745] Apache Commons Text vulnerability in Ignition?

lrose March 13, 2023, 12:47pm 10

See here:

V8.1.23+ is now dependent on Apache commons-text library version 1.10.0 which addresses the vulnerability.

1 Like