CVE-2022-42889 - Possibly exploitable in AD Self Server Plus

CVE-2022-42889 - Possibly exploitable in AD Self Server Plus

Dangerous hole in Apache Commons Text:


CVE-2022-42889

Recommended fix is to upgrade the .jar library to commons-text-1.10.jar or higher.

AD Self Server Plus uses commons-text-1.6.jar and commons-text-1.8.jar under:
  1. C:\ManageEngine\ADSelfService Plus\lib
Is there a plan to patch this, and more importantly an ETA?

Thank you.


      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
              See all integrations
              New to ADManager Plus?
              See all integrations
              New to ADManager Plus?

                New to ADSelfService Plus?

                Start your free trial
                Start your free trial



                          Related Products