Java Spring Framework Exploit
Date: 2022-04-13
Author: Anders Adolfsson, Product Manager
Versasec would like to address questions and concerns that might surface with customers concerning the zero-day exploit affecting the Java Spring Framework disclosed on March 31, 2022.
The attack vector is not applicable to vSEC:CMS as it is currently explained in the RCE proof of concept. Versasec does not use Spring in the development process and Tomcat is not a part of the vSEC:CMS server infrastructure.
For more information or questions, contact us on chat.
vSEC:CMS
Our product suite provides all the software tools to administrate and manage credentials in a secure and convenient way.
Free Product Trial
Versasec provides enabling IT security products centered on the usage of security devices such as smart cards. Our solutions enable customers to securely authenticate, issue and manage user credentials more cost effectively. Get a free product trial.
Job Openings
We are always looking for new exceptional persons to join our team! Find out more about our job openings.
Versasec Support
Versasec customers with an existing support and maintenance contract can access the Versasec Support Portal, offering extensive professional support and maintenance services. The Versasec Support Portal offers a variety of services, allowing for customers and any site visitor to communicate directly with support engineers.
Company Blog
Our blog addresses the latest security trends and stories. The posts discuss how identity and access management are playing a larger role in keeping corporate data safe as well as brand reputations intact.