Spring4Shell Vulnerability (CVE-2022-22963)

TL;DR: ProAct is not affected.

NuDatum continues our analysis of the Spring Cloud Function Vulnerability, AKA Spring4Shell (CVE-2022-22963) affecting applications using the Java Development Kit (JDK) version 9+ and disclosed on January 10, 2022. The ProAct v4 application does not utilize any Java libraries therefore is not affected by the vulnerability.  There are no currently known threats to either the hosted or on-premise versions of ProAct v4.

Please contact us if you have any questions.