Other ways to search: Events Calendar | UTHSC

SPSS Statistics Vulnerability – Patching Required – ITS Update


SPSS is short for Statistical Package for the Social Sciences, and it’s used by various kinds of researchers for complex statistical data analysis.

A critical Log4j vulnerability affecting all currently supported versions of SPSS Statistics has been identified. This vulnerability allows for remote code execution in the Apache Log4j Java library. The ITS department will be updating SPSS and applying patches to all UTHSC owned and managed devices that have this software installed. Patching will occur during the routine maintenance window starting the weekend of March 4th. These patches may require the computer to restart for changes to apply.

SPSS Statistics versions that will be patched: 25, 26, 27, and 28.