Possible vulnerability with workstation.jnlp

Article Id: 143391

Status: Published

Updated On: 20-01-2020 18:16

Products:

CA Application Performance Management Agent (APM / Wily / Introscope) , CA Application Performance Management (APM / Wily / Introscope) , INTROSCOPE , DX Application Performance Management

Issue/Introduction:

Vulnerability Scanning Report shows, while initiating WebStart Workstation with Chrome, downloading workstation.jnlp, and then launching it.

Cause:

Per Engineering, this is not a threat. Rather, a caching mechanism triggers it.

Environment:

Release : 10.7.0

Component : APM Agents

Resolution:

Engineering will address this in future releases with improved cache handling.