Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

Trending KB Articles

ThinkstockPhotos-511475207.jpg

Infoblox NIOS and BloxOne products not vulnerable to CVE-2022-22965

samanna
Adviser
Posts: 321
samanna

Infoblox NIOS and BloxOne products not vulnerable to CVE-2022-22965

Adviser ‎04-06-2022 09:54 AM

Apr 6, 2022Knowledge
 
Summary:
On March 31, 2022, a vulnerability was discovered in Spring MVC and Spring WebFlux applications running on JDK 9+. This vulnerability was identified under CVE-2022-22965 (Spring4Shell).
 
Overview and Impact:
CVE-2022-22965 (Spring4Shell) is the designation for this vulnerability and affects Spring MVC (spring-webmvc) and Spring WebFlux (spring-webflux) when running on JDK 9 or above.

NIOS and BloxOne products are not exploitable by this vulnerability.
 
Confirmed Not Impacted
  • NIOS and Bloxone products are not vulnerable.
Under investigation:
  • NETMRI product is still under investigation and Infoblox will update this KB as information becomes available.
Workaround:
No workaround needed for Infoblox NIOS and Bloxone product.

Resolution:
No action is required for NIOS or BloxOne products identified above.

Labels:
0 Kudos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended Discussions

Re: NetMRI 7.6.0 has no in-place upgrade?

Re: Trinzik 1415 EoL question

Re: When do I need Match Clients for DNS Views

Re: Trinzik 1415 EoL question

Re: New ISC bind security issues for Bind 9, NIOS affected?