Athena-Jdbc vulnerability in CABI 8.0
search cancel

Athena-Jdbc vulnerability in CABI 8.0

book

Article ID: 276464

calendar_today

Updated On:

Products

CA Unified Infrastructure Management SaaS (Nimsoft / UIM) CA Unified Infrastructure Management On-Premise (Nimsoft / UIM) DX Unified Infrastructure Management (Nimsoft / UIM)

Issue/Introduction

Seen below vulnerabilities in CU8 and cabi 8.0

Path              : D:\Program Files (x86)\Nimsoft\probes\service\wasp\webapps\cabijs\WEB-INF\lib\athena-jdbc42-2.0.18.1000.jar

  Installed version : 1.2.17

 


  Path              : D:\Program Files (x86)\Nimsoft\c\buildomatic\install_resources\war\jasperserver-pro\WEB-INF\lib\athena-jdbc42-2.0.18.1000.jar

  Installed version : 1.2.17

Environment

Release: UIM 20.4 CU8

Component: CABI 8.0

Resolution

Starting from 8.20 the jasper soft is discarded using this dependency.

We are going to release cabi-8.20 with UIM 23.4 in which this vulnerability will be  fixed.