Impact

What kind of vulnerability is it? Who is impacted?
Use of weak cryptographic algorithm: RSA/ECB/PKCS1Padding

Patches

Has the problem been patched? What versions should users upgrade to?
Will be patched on v2.3 for Release Builds and 426 onwards for Nightly Builds

Workarounds

Is there a way for users to fix or remediate the vulnerability without upgrading?
Disable advance security feature if not required.

References

• http://archiv.infsec.ethz.ch/education/fs08/secsem/bleichenbacher98.pdf
• http://www.iacr.org/archive/eurocrypt2000/1807/18070374-new.pdf
• https://eprint.iacr.org/2012/417.pdf