Skip to content

Salesforce is investigating impact of Spring4Shell vulnerabilities

Salesforce is investigating impact of Spring4Shell vulnerabilities on Salesforce Products.

1. What are Spring4Shell Java RCE ‘0-day’ vulnerabilities?

Two serious vulnerabilities leading to remote code execution (RCE) have been found in the popular Spring frameworks Spring Core and Spring Cloud Functions. You can find additional details about these vulnerabilities below:

2. Who is impacted?

Anyone using Spring on Java 9 or newer.

3. Are any Salesforce products impacted?

Salesforce has posted message on the trust site that it is investigating the issue.

You can view the Salesforce Spring4Shell message here!

Salesforce Security Notification - Spring4Shell
Salesforce Security Notification

4. Update April 8, 2022

General Message Update April 8
April 8 Update

Recommended Articles

Tags:

Please Leave a Comment

error: Content is protected !!