A potential vulnerability in the Java runtime environment related to signature verification has been reported by the vendor under CVE-2022-21449.
After a thorough review of all Governikus products, we can report that none of our products are affected by this vulnerability, as the affected Java versions are not supported by the Governikus products or we ship our client products with correspondingly unaffected Java versions.
Despite this fact, operators of our server products should follow Oracle's recommendation to apply security patches in a timely manner.
Any vulnerabilities that arise are reviewed by our development teams as soon as they become known, so that we can provide information and solutions as quickly as possible.