We have relatively new security findings on CA Introscope App Servers related to the Spring Framework. What I'd like to understand is if this finding is resolved in a later version (at least version 5.2.20 or greater)? If not, is there an expected release date of a version that will have this remediated? Thanks in advance for your assistance, and please let me know if anything else is needed.
Release : 10.7.0
This will be in a 10.8 HF. No plans to fix this in 10.7. So upgrading to 10.8 and deploying the HF is the most direct way to resolve both issues. Please contact Support to get a HF status .