/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Does Spring Framework vulnerability CVE-2022-22950, CVE-2022-22970, or CVE 2022-22971 impact ASE/SRS?
- Vulnerability scanner returns spring-core-3.2.5.RELEASE.jar as security vulnerability CVE-2022-22950, CVE-2022-22970, and CVE 2022-22971.
- This file is found in a directory of the RMA component, showing two example paths:
$SYBASE/DM/RMA-16_0/libs/spring/spring-core-3.2.5.RELEASE.jar
$SYBASE/<SID>/DM/RMA-16_0/libs/spring/spring-core-3.2.5.RELEASE.jar
- This file is found in a directory of the RMA component, showing two example paths:
Read more...
Environment
- SAP Replication Server 16.0 (SRS)
- SAP Adaptive Server Enterprise (ASE) 16.0 with Always-on Option (HADR)
- SAP Adaptive Server Enterprise (ASE) 16.0 for Business Suite with High Availability Disaster Recovery (BHADR)
- HADR component RMA
- Spring Framework
Keywords
CVE-2022-22950, CVE-2022-22970, CVE 2022-22971, cockpit, spring framework, RMA, spring-core-3.2.5.RELEASE.jar, SP03, SP04 springframework-spring-core CVE , KBA , BC-SYB-REP-SAP , Replication with SAP Suite / SAP BW , BC-DB-SYB , Business Suite on Adaptive Server Enterprise , BC-SYB-ASE , Sybase ASE Database Platform (non Business Suite) , BC-SYB-REP , Sybase Replication Server (standalone) , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)