You are viewing the RapidMiner Support documentation for version 10.3 - Check here for latest version
Spring4Shell (CVE-2022-22965 - RCE vulnerability in Spring Framework)
April 2022
A critical vulnerability has been found in the Spring Framework and named CVE-2022-22965. The vulnerability impacts Spring MVC and Spring WebFlux applications running on JDK 9+. See
Note that the RapidMiner platform is NOT affected by this vulnerability, even though RapidMiner AI Hub uses Spring as part of different components.
We keep a close watch on any vulnerability that appears in third-party software incorporated into the RapidMiner platform.