ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Does CVE-2017-9805 affect UIM

book

Article ID: 15889

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM) NIMSOFT PROBES

Issue/Introduction



Does CVE-2017-9805 affect UIM

Environment

UIM 8.5.xUIM 8.4.x

Resolution

CVE-2017-9805 only affects applications using Struts 2.1.2 - Struts 2.3.33, Struts 2.5 - Struts 2.5.12.

UMP in UIM uses Liferay 6.1.30 which uses Struts 1.2, so this vulnerability does not apply.

Additional Information

https://struts.apache.org/docs/s2-052.html