About JAVA vulnerability (API Portal).

book

Article ID: 145583

calendar_today

Updated On:

Products

CA API Developer Portal

Issue/Introduction

Portal3.5 Software version  (using JDK 8),
Please confirm whether you are affected by the following vulnerabilities.
CVE-2020-2583
CVE-2020-2585
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2659

CVE-2020-2756
CVE-2020-2757

CVE-2020-14621

Environment

Release : 3.5

Component : API PORTAL

Resolution


The vulnerability in Java could affect API Portal.
CR14 or later, Portal has been updated to use OpenJDK 12.0.2.
Please upgrade (integrate) to a JDK that fixes the problem.
Please note that for the software version, you need to upgrade or migrate java on your side.