Dear CBA customers and partners,
We have been made aware of the high severity vulnerability (CVE-2022-22965) referred to as Spring4Shell vulnerability. This impacts spring framework versions 5.3.18 and 5.2.20 running on JDK9+.
We have checked the impact of this vulnerability on our services and can confirm that there are no openly vulnerable services for Live Assist for Dynamics 365.
We will continue to monitor the progression of the situation, including but not limited to any secondary vulnerabilities that appear to be related to Spring4Shell, and will provide further updates should the situation change.
If you require further information, please contact us at email@example.com.
Communication Business Avenue, Inc