CA Single Sign On Secure Proxy Server (SiteMinder)CA Single Sign On Agents (SiteMinder)CA Single Sign On Federation (SiteMinder)CA Single Sign On SOA Security Manager (SiteMinder)SITEMINDER
The following CVE's have been reported for Apache 2.4.41 and older. The current version of Apache shipped with Siteminder Access Gateway r12.8.x is 2.4.39, however there are patches to upgrade to Apache 2.4.41. These CVE's impact Apache 2.4.41 as well.
mod_proxy_ftp use of uninitialized value (CVE-2020-1934) mod_rewrite CWE-601 open redirect (CVE-2020-1927)
Release : 12.8.03
Component : SITEMINDER -WEB AGENT FOR APACHE
The release of Access Gateway r12.8.4 will include either Apache 2.4.42 or 2.4.43. Access Gateway r12.8.4 is scheduled for release in late May.