CVE-2023-50164

search cancel

CVE-2023-50164

book

Article ID: 277382

calendar_today

Updated On:

Products

CA Application Performance Management (APM / Wily / Introscope)

Issue/Introduction

Does Application Performance Management (CAAPM) is affected by CVE-2023-50164?

https://nvd.nist.gov/vuln/detail/CVE-2023-50164

Environment

APM SaaS

Resolution

APM Agent 2023.3 is not affected by https://nvd.nist.gov/vuln/detail/CVE-2023-50164.

The /opt/SecureSpan/EpAgent/apmia/deps/java-agent/wily/extensions/deploy/struts.tar.gz extension is used for monitoring applications having a struts framework. The struts extension does not contain the vulnerable code highlighted in the CVE.

The package is named as struts but it contains proprietary Broadcom APM Agent code.

Feedback

thumb_up Yes

thumb_down No