My Oracle Support Banner

Impact of Spring Framework Vulnerability on Oracle on-premises products (CVE-2022-22965) (Doc ID 2863641.1)

Last updated on NOVEMBER 21, 2022

Applies to:

Oracle Data Integrator - Version 12.2.1.4.220112 to 12.2.1.4.220112 [Release 12c]
Identity Manager - Version 12.2.1.4.0 to 12.2.1.4.0 [Release 12c]
Information in this document applies to any platform.

Purpose

This document details the Oracle Products affected by Spring Framework CVE-2022-22965.

Scope

This document provides information about the availability of patches or mitigation instructions for products physically located in customers’ on-premises locations (including traditionally licensed products and cloud on-premises components).

For information about Oracle cloud environments, customers should refer to “Impact of Spring Framework Vulnerability on Oracle cloud environments (CVE-2022-22965) (MOS Note ID 2863621.1).

If you do not find information about a given product in this MOS Note, you should look in the other MOS Note.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.