cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
François
Administrator
Administrator

HOPEX bundle does not incorporate nor make any use of Spring Framework RCE and is not concerned by vulnerability CVE-2022-22965

The full HOPEX source code is submitted every day to an Open Source Security Scanner, explicitly aimed at detecting weak or obsolete open source code, embedded directly or by cascade calls.

 

Reference :

NVD CVE-2022-22965 https://nvd.nist.gov/vuln/detail/CVE-2022-22965

Synopsys/Blackduck BDSA-2022-0858

Contributors