Article - CS384444
Impact of node-jsonwebtoken vulnerability CVE-2022-23529 on the ThingWorx family of products
Modified: 06-Feb-2023
Applies To
- Windchill Navigate (formerly ThingWorx Navigate) 8.5.0 to 9.3
- ThingWorx Platform 8.5 to 9.3
Description
- Is the ThingWorx Platform vulnerable to the node-jsonwebtoken vulnerability exposed by CVE-2022-23529?
- How are ThingWorx products affected by CVE-2022-23529?
- ThingWorx Flow uses Nodejs extensively is it affected by CVE-2022-23529?
- Please advise if ThingWorx Navigate 9 contains JsonWebToken code
- Is JsonWebToken used in any ThingWorx products?
This is a printer-friendly version of Article 384444 and may be out of date. For the latest version click CS384444