Is DX UIM 20.4 CU5 affected by the following CVEs:
CVE-2023-24998
CVE-2006-20001
CVE-2022-36760
CVE-2022-37436
Release : 20.4
None of these vulnerabilities impact UIM.
CVE-2023-24998 - Apache commons_fileupload is not used within UIM.
CVE-2006-20001 - We use Apache Tomcat within UIM. We do not use Apache HTTP Server.
CVE-2022-36760 - We use Apache Tomcat within UIM. We do not use Apache HTTP Server.
CVE-2022-37436 - We use Apache Tomcat within UIM. We do not use Apache HTTP Server.