Date: 29th April
Secure Code Warrior is aware of the recently disclosed CVE-2022-21449 vulnerability, Psychic Signatures in Java.
We have assessed our internal environment for services that may use the vulnerable Java components. At the time of this update, Secure Code Warrior confirms we are not impacted.
We are actively monitoring this issue, and are working with our critical suppliers to understand impacts in the supply chain that might have an impact on services we offer you.
Updates will be posted to this thread as additional information becomes available.