Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Being Alerted I have this vulnerability, CVE-2022-42889, but I have SP3 installed

former_member1027468
Discoverer

‎2023 Jan 17 3:00 PM

0 Kudos
593

We use Arctic Wolf to scan our systems for vulnerabilities and it is showing I have this vulnerability on my laptop. However, I have installed SP3 for Crystal Reports 2020 and it has not resolved the issue. This is for the Apache Commons Text vulnerability.

How can I fix this issue with my version of Crystal Reports 2020?

1 REPLY 1

palmgrl
Explorer

‎2024 Feb 08 1:48 PM - edited ‎2024 Feb 08 1:54 PM

0 Kudos
538

It seems to have been remediated in SP 3 P2. This is through testing, though.  I cannot find anything from SAP indicating they made any changes other than saying it does not affect us, which is not good enough for my auditor.