CVE-2023-21930 - Oracle Java SE Multiple Vulnerabilities (April 2023 CPU)
search cancel

CVE-2023-21930 - Oracle Java SE Multiple Vulnerabilities (April 2023 CPU)

book

Article ID: 266821

calendar_today

Updated On:

Products

CA Application Performance Management (APM / Wily / Introscope)

Issue/Introduction

Our security scan found some vulnerabilities on the Java used with Introscope. Can the Java component be replaced/upgraded independently or does the entire product needs to be upgraded?

Environment

Release : 10.7.0

Resolution

APM is affected by CVE-2023-21930.  The fix is to upgrade Java to OpenJDK 8u372-b07 on 10.7 SP3 Agents and Enterprise Manager.