3219301 - Spring Framework RCE vulnerability in SAP Invoice Management by Open Text

Symptom

Is SAP Invoice Mangement by Open Text susceptible to the Spring Framework RCE vulnerability reported in CVE-2022-22965?

Environment

SAP Invoice Management by Open Text 16.3, 20.4, 5.1, 5.1.5, 5.1.6, 5.2.0, 6.0, 7.0, 7.5, 7.6

Product

SAP Invoice Management by OpenText for SAP S/4HANA all versions ; SAP Invoice Management by OpenText for SAP S/4HANA, option for invoice processing all versions

Keywords

CVE-2022-22965, Spring Framework RCE , KBA , XX-PART-OPT-DCP , SAP Digital Content Processing by OpenText , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.