Our security team is aware of CVE-2022-22965 and is working to find out whether our systems are impacted.
Our preliminary analysis suggests that we’re not impacted, but we’re still working on it. At the moment of writing, we can tell our Bugfender On-Premises is not affected.
Edit (4-Apr-2022): Bugfender SaaS is not impacted. None of our products or services are impacted.
We will keep posting updates on this post as we learn more.