Good Day,
I've been reading through some of the information that is now available
about the recently reported remote code execution vulnerability in the
Spring framework and it appears that a vulnerable version of this library
is part of the 1.15.3 release?
Is it known yet if this library is used
rporated in upcoming
> releases.
>
> Please see the following NiFi Jira issue for additional details regarding
> the upgrade and background on the vulnerability:
>
> https://issues.apache.org/jira/browse/NIFI-9852
>
> Regards,
> David Handermann
>
> On Thu, Mar 31, 20