Pulse | Community Support

News Marketplace Product Support Community

Spring4Shell

Solved

Inseya AG

Hello there

I’ve just got the question from a customer, if SOTI MobiControl or SOTI Assist is vulnerable to the new Spring4Shell Vulnerability.

On the SOTI Central and Community I din’t found any statement.

But if I dig deeper I see that JDK 9 and above is affected.

https://www.kaspersky.com/blog/spring4shell-critical-vulnerability-in-spring-java-framework/44034/

As we have installed JDK 11 in the latest Version of Mobicontrol, this would be affected.

How can we eliminate this issue or are the mentioned Products not affected?

Thank you and best Regards

Beni

zeroday vulnerability security spring4shell

3 years ago

SOTI MobiControl

ANSWERS

Martin K.

3 years ago

Only the Search Service from MobiControl is using Java, and there is no usage of Spring or Spring Boot as I can see. Soti Assist/XSight isn't using Java at all.

Solution

Benjamin Spahr

3 years ago

Got also the Statement from SOTI itself that they aren't affected.

Discussions

Articles

A link to reset your password has been sent to your registered email.

Spring4Shell

Similar Discussions

Discussions

Articles

Choose Login Type

SOTI Customers

SOTI Customers

SOTI Altitude Partner Login

Reset your Password

A link to reset your password has been sent to your registered email.

Reset your Password

Verify Your Email

Spring4Shell

Similar Discussions