Part of the ProjectWise Design Integration functionality includes the ability to extract thumbnails and file properties from PDF files using Adobe technology. Multiple vulnerabilities have been discovered in this technology. Bentley Managed Services has removed the Adobe technology from all ProjectWise hosted systems which in turn has disabled the ability to extract thumbnails and file properties. This does not affect the full text extractions from PDF files as this functionality does not require the same software. Adobe has updated the technology removing the vulnerabilities and Bentley is now incorporating the new Adobe code into the next release of the ProjectWise Design Integration Server available in Q1/Q2 of 2019.
Bentley has not detected any exploitation of these vulnerabilities in any hosted ProjectWise Design Integration system.