Apache Commons Text Scan Analysis
0 Votes |
Description
This is Community Content. When you use these solutions, it is incumbent on your organization to test any solutions provided across the broadest available system base including various OS, storage solutions, and application inventory.
Please see the Community Solution Testing Statement
This Analysis retrieves results of a filesystem scan to attempt detecting Apache Commons Text versions that may be vulnerable to one of the following vulnerabilty CVE-2022-42889 reported in October 2022:
- https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om
- https://nvd.nist.gov/vuln/detail/CVE-2022-42889
This Analysis attempts to detect the presence and versions of Apache Commons Text java library, without distinction between vulnerable or updated versions. These results should be considered only a starting point in determining whether a system is actually vulnerable, along with other information such as the version of Java Virtual Machine and specific application or code configurations as referenced in the security bulletins above.
Property Details
2998676 | |
Beta - Preliminary testing ready for more | |
Apache Commons Text Scan Analysis | |
BESC | |
Apache Commons Text, commons-text, scan, vulnerability, CVE-2022-42889 | |
JasonWalker on 10/21/2022 12:03:09 PM | |
JasonWalker on 10/21/2022 12:03:09 PM | |
886 Views / 8 Downloads | |
![]() ![]() ![]() ![]() ![]() |
Properties
All Apache Commons Text Detections
Period
30 minutes
* Results in a true/false |

(if exists property "locked lines" then locked lines of it else lines of it) whose (it does not start with "::") of files "apache-commons-text.txt" of folders "Scans" of folders ((if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
Number of Apache Commons Text Detections
Period
30 minutes
* Results in a true/false |

number of (if exists property "locked lines" then locked lines of it else lines of it) whose (it does not start with "::") of files "apache-commons-text.txt" of folders "Scans" of folders ((if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
Unique Apache Commons Text Versions Found
Period
30 minutes
* Results in a true/false |

unique values of (unique value of following texts of lasts "-" of preceding texts of lasts ".jar" of (it as lowercase) | "unknown") of lines whose (it does not start with "::") of files "apache-commons-text.txt" of folders "Scans" of folders ((if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
Relevance

if exists property "in proxy agent context" then not in proxy agent context else true
Used in 1 analsis | * Results in a true/false |

exists files "apache-commons-text.txt" of folders "Scans" of folders ((if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
Sharing
Social Media: |