» Published on Tue, 03 Oct 2023 12:40:00 +0000

• Investigating

  We are aware of the recently announced critical security vulnerability CVE-2023-5129 and CVE-2023-4863, related to use of the libwebp library.

  We are comprehensively investigating the extent to which any Kallidus applications, services or internal systems may use libwebp and thus be potentially vulnerable to this exploit. The investigation will include an assessment and action plan of available patches and any other mitigations which may remediate, and we will update our status via this page when we have further information.

  As a matter of good practice, we would advise all of our customers to use the latest versions and apply recent updates to their browsers when accessing our applications or services.

  » Updated Tue, 03 Oct 2023 12:40:00 +0000