Could you confirm, whether portal 5.2.1 is vulnerable against these CVE's.
Release : 5.2.1
Engineering informed the following
the following CVE can be ignored.
CVE-2018-12545 not affected
** The Following CVE :
are due to the jetty version we are currently using. The fix will be provided on upgrade jetty before the next release.