CA Access Gateway 12.8.05 vulnerability CVE-2021-30640

book

Article ID: 223292

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

The CA Access Gateway server 12.8.05 is using Tomcat versions with known security vulnerability CVE-2021-30640
(https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.46), rated as low.

Environment

Release : 12.8.05

Component : Access Gateway

Resolution

Tomcat vulnerability CVE-2021-30640 is fixed in version 9.0.52

Please raise a support ticket to obtain this binary until this is made available for download.