About MySQL vulnerability (API Gateway).

book

Article ID: 198698

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

Is API Gateway  affected by following CVEs?
CVE-2020-14539
CVE-2020-14559
CVE-2020-14540
CVE-2020-14547
CVE-2020-14553
CVE-2020-14576

Environment

Release : 9.x,  10.0

Component : API GATEWAY

Resolution

The vulnerability in MySQL could affect APIGateway.

These CVE's affect MYSQL 5.7.30 and prior 8.0.20 and prior.
Pelase apply the latest monthly platform update(MPP).

Gateway 10 July MPP upgrades MySQL to 8.0.21
Gateway 9 August MPP upgrades MySQL to 5.7.31

Please note that for the software version, you need to upgrade or migrate MySQL on your side.