search cancel

Java vulnerability in install_config_info folder on Access Gateway server

book

Article ID: 240857

calendar_today

Updated On:

Products

SITEMINDER

Issue/Introduction

The Java version 11.0.0 which is part of the install_config_info folder in the Access Gateway server is found to be impacted by a vulnerability. Are there any mitigations for this vulnerability?

Environment

Release: 12.8.06

Component: SITEMINDER SECURE PROXY SERVER

Resolution

The Java version that is part of the Access Gateway installer will be updated in future releases. For now, you can safely remove the jre folder under the install_config_info folder as a mitigation for this vulnerability.