[TIBCO EBX®] Resolution and Mitigation for the Apache Commons Text (Text4Shell) Vulnerability

[TIBCO EBX®] Resolution and Mitigation for the Apache Commons Text (Text4Shell) Vulnerability

book

Article ID: KB0071834

calendar_today

Updated On:

Products Versions
TIBCO EBX 6.0.0 to 6.0.10

Description

TIBCO is aware of the recently announced Apache Commons Text vulnerability (CVE-2022-42889), referred to as “Text4Shell” and the JXPath vulnerability (CVE-2022-41852) 
For more information about the general TIBCO investigation into this, please refer to Apache Commons Text Vulnerability & JXPath
 

This service pack addresses Apache Commons Text Vulnerability (Text4Shell) - CVE-2022-42889.

Environment

This service pack addresses the following Apache Commons Text Vulnerability (Text4Shell) - CVE-2022- 42889 - for TIBCO EBX® Releases 6.0.0 to 6.0.10

Resolution

Customers on an earlier release of TIBCO EBX® must upgrade to release 6.0.11 from TIBCO eDelivery.

Issue/Introduction

This article contains resolution and mitigation steps for the Apache Commons Text (Text4Shell) Vulnerability.

Additional Information

Apache Commons Text