Security Notices

March 2022: Spring vulnerability

A potential RCE exploit vulnerability was found in the Spring framework, which is used heavily in the Flowable products. New Flowable releases were published, containing fixes. Customers are strongly advised to upgrade as soon as possible.

See the dedicated page for more information.

December 2021: Log4j vulnerability

A potential RCE exploit vulnerability was found in log4j, which Flowable uses for logging. New Flowable releases were published, containing fixes. Customers are strongly advised to upgrade as soon as possible.

See the dedicated page around this vulnerability for more information.

March 2022: Spring vulnerability​

December 2021: Log4j vulnerability​

March 2022: Spring vulnerability

December 2021: Log4j vulnerability