Spring4Shell (CVE-2022-22965 - RCE vulnerability in Spring Framework)

April 2022

A critical vulnerability has been found in the Spring Framework and named CVE-2022-22965. The vulnerability impacts Spring MVC and Spring WebFlux applications running on JDK 9+. See

Note that the RapidMiner platform is NOT affected by this vulnerability, even though RapidMiner AI Hub uses Spring as part of different components.

We keep a close watch on any vulnerability that appears in third-party software incorporated into the RapidMiner platform.