Microsoft published critical vulnerability CVE-2025-55315. While its impact on Origam remains to be tested, here is the overview of the versions and steps needed to address the issue:
| Version | .NET | Needed steps |
|---|---|---|
| < 2024.9 | 6.0 | Not affected |
| 2024.9 - 2025.10.0 | 8.0 | Docker images are affected. If you’re using the docker images you should upgrade to 2025.10.1. If you’re hosting Origam on IIS you should update .net runtime. |
| > 2025.10.1 | 8.0 | Docker images are using patched .net runtime. If you’re hosting Origam on IIS you should update .net runtime. |