APIGW: Expat vulnerabilities: CVE-2022-23990, CVE-2022-43680
Article ID: 255693
Updated On:
Products
CA API Gateway
Issue/Introduction
Here are expat vulnerabilities:
https://access.redhat.com/security/cve/cve-2022-23990
https://access.redhat.com/security/cve/cve-2022-43680
Does each CVE have any impact on CA API Gateway v10.X? If so, please let me know the resolution (patch release) as well.
Environment
Release : 10.0, 10.1
Resolution
Expat is a native stream-oriented XML parser library and API Gateway does not use this for XML parsing, so these CVEs do not affect Gateway.
Feedback
Yes
No
Powered by
