Skip to content
English
  • There are no suggestions because the search field is empty.

CVE-2022-42889 Apache Commons Text - CVSS Score :9.8

The following patch by Waratek addresses the recent vulnerability CVE-2022-42889, aka "Text4 Shell". This patch has been tested against a known exploit and proved successful in preventing the exploit of this vulnerability.

Please see the Waratek Customer Advisory HERE for more information.
The following patch by Waratek addresses the recent vulnerability CVE-2022-42889, aka
"Text4 Shell".

This patch has been tested against a known exploit and proved successful in preventing the exploit of this vulnerability.
Apply the patch as normal, uploading to your Management Console or The Waratek Portal depending on your configuration, and adding to your existing rules to further protect your applications.
There should be no need to understand if your applications are vulnerable or not as this patch has been designed to be applied safely and universally for your convenience.

The ARMR Virtual Patch can be downloaded below:

ARMR 1.3 (Legacy)

For Agent v16.x and Mgmt Console v2.x

Patch link for download 27-Oct-2022

ARMR 2.2

For Agent v19.x-v24.x and
Mgmt Console v5.x,
Portal Dedicated,
SaaS Portal

Patch link for download 27-Oct-2022

 

If you want to understand whether this patch has been applied correctly, or what kind of logging to expect when it is being triggered , have a look into THIS additional information on this patch.