Skip to main content

Solutions

Law firms

Tax, audit & accounting firms

Corporations

Governments

Products

Legal

Trade & supply

Tax, audit & accounting

Corporate tax

Risk & fraud

Books

Recommended products

Questions? We are here to help.
Contact us

Purchase

Buy solutions

Buy books

Contact sales

Questions? We are here to help.

Resources

Insights

Events

Product training

Product communities

Developers

Determination Anywhere

Determination Anywhere 2026.02 third patch release notes

Please review this release note in conjunction with the Determination Enterprise Cloud release notes, which outline key updates to the core application. These include enhancements to the tax engine logic, regulatory compliance improvements, UI feature upgrades, and may also highlight defect resolutions and known issues – all of which directly impact the tax engine's functionality within Determination Anywhere (DA).
Please also refer to the statement in the main release note regarding how security vulnerabilities in the DA client‑side application are addressed.

Release highlights

This patch introduces enhancements related to Determination Anywhere (DA) data residency and adds support for a feature introduced in Determination Enterprise Cloud.

New features

Tax response editor (4711656)
Support for the Tax Response Editor is now available in the DA Cloud application. This feature allows customers to configure how tax engine response results are processed, consistent with the setup described in the 2026.02 Determination Enterprise Cloud release notes.
Support for the Tax Response Editor in the DA Store application will be delivered as part of the upcoming major DA release.
Data Residency – Avro file generation (5255303)
The Avro file generated as part of the Determination Anywhere (DA) data residency process has been enhanced to improve completeness and consistency. Previously, the Avro output generated did not include all required data elements.
With this update, a data transformation step has been introduced prior to Avro file generation and storage in the customer’s object storage location. As a result, the Avro output now includes all relevant data elements and aligns more closely with the XML response produced by the tax engine.
Supporting documentation is available to help customers correlate data across the Avro file, the tax engine XML response, and the corresponding audit database elements from the legacy Determination (“Sabrix”) on‑premise application.
Documentation for the JSON response format will be delivered in a future release.

Fixes

The following topics outline previously identified issues that have been resolved in this release.
Security Vulnerability Remediation (5018118)
This update addresses critical and high‑severity security vulnerabilities identified in the DA client‑side application, further strengthening the overall security posture of the platform. Key remediation actions include:
  • CVE-2026-22732
     – Critical vulnerability in Spring Security Web that could allow sensitive information to be cached in HTTP response headers
  • CVE-2024-22259
     – Critical cache-related vulnerability in Spring Security Web that could expose sensitive information
  • CVE-2026-22733, CVE-2026-22731, CVE-2023-20873
     – Authentication bypass vulnerabilities in Spring Boot Actuator components
  • CVE-2026-22737, CVE-2024-38739
     – Directory traversal vulnerabilities in Spring WebMVC and WebFlux
  • CVE-2026-24400
     – XML External Entity (XXE) injection vulnerability in AssertJ Core
  • CVE-2026-1605
     – Resource allocation vulnerability in Jetty Server that could result in resource exhaustion

This article applies to:

  • Product: ONESOURCE Determination

Related Content