Zero-Day Vulnerability Discovered in Java Spring Framework aka Spring4Shell (similar to Log4Shell?) Does this affect Projectwise in any capacity?

Question

If yes then is there any counter measures we need to be aware of?

Sangameshwar Pendalwar · Accepted Answer

At this time we are not aware of any issues with Bentley software or services involving the &ldquo; Zero-Day Vulnerability Discovered in Java Spring Framework aka Spring4Shell &rdquo; 
 Should the Bentley security team find any threat or security issue they will communicate to you through the following wiki page : 
 https://communities.bentley.com/products/w/products__wiki/57356/bentley-security-update-december-2021 
 
 Please be sure to bookmark and monitor this page should you have concerns about this or any other security issue. 
 Note: Bentley Security will only post if Bentley software or services are affected by a security threat or vulnerability.

Sangameshwar Pendalwar · Answer

Please monitor our Trust Center's Advisories, we'll communicate for sure if we are affected by something. So, monitoring our advisories is the best course of action. 
 https://www.bentley.com/en/Trust-Center

Zero-Day Vulnerability Discovered in Java Spring Framework aka Spring4Shell (similar to Log4Shell?) Does this affect Projectwise in any capacity?

Top Replies