Enterprise EditionVersion 9.4 and CVE-2022-41852, CVE-2022-42889

We are using EE 9.4. Are we affected by CVE-2022-41852, CVE-2022-42889 vulnerabilties?

Hello @Karthik_Ramachandran, thanks a lot for taking the time to participate to the community.

As you may not know, we are only supporting Latest SonarQube version ( 9.7.1 ) and LTS ( 8.9.10 ).

I would highly suggest you to upgrade to the latest version or use the LTS. As we are fixing vulnerabilities only on those supported versions.

Jeremy Cotineau