Summary
Laserfiche is aware of the recently publicly disclosed vulnerabilities affecting the Spring Framework for Java as described in:
Laserfiche Cloud and Laserfiche's downloadable software products are not affected by these vulnerabilities in the Spring Framework for Java.
Other Mitigations
Customers using the Java Repository Access (JRA) library distributed with the Laserfiche Software Development Kit (SDK) are responsible for any use of the Spring Framework in their own custom projects. JRA itself is not directly affected by the above vulnerabilities.
Related Links