UIM - Apache fixes actively exploited zero-day vulnerability check

book

Article ID: 225996

calendar_today

Updated On:

Products

DX Infrastructure Management CA Unified Infrastructure Management On-Premise (Nimsoft / UIM) NIMSOFT PROBES

Issue/Introduction

Apache fixes actively exploited zero-day vulnerability CVE-2021-41773/CVE-2021-41524

Apache fixes actively exploited zero-day vulnerability, patch now

Is UIM application affected by this 

 

 

Environment

Release : 20.3.x

Component : UIM - SECURITY VULNERABILITIES

Resolution

In UIM wasp is using apache tomcat internally and not Apache HTTP server so wasp is not impacted by these issues. i,e CVE-2021-41773/CVE-2021-41524

To add latest wasp tomcat version is 9.050 

But this needs to be applied on top on September OC patch 20.3.3 or higher patch level separately

DX Unified Infrastructure Management - Hotfix Index

Attachments