APMSSO libcurl vulnerability CVE-2023-38546
search cancel

APMSSO libcurl vulnerability CVE-2023-38546

book

Article ID: 277732

calendar_today

Updated On:

Products

CA Application Performance Management (APM / Wily / Introscope)

Issue/Introduction

We wants to check to see if these vulnerability file can be remediated:

/opt/CA/caapmsso/bin/libcurl.so

Tenable is the vulnerability scanner

 Path              : /opt/CA/caapmsso/bin/libcurl.so
 Installed version : 7.19.7
 Fixed version     : 8.4.0


CVE code/number:
TEN-182873

Environment

Sitemider - R12.8 SP6 and APMSSO - 13.2.0

Resolution

For Linux environment , APMSSO provides libcurl.so for 32 bits only.
The 64 bits APMSSO uses default curl provided by Operating system where default curl is installed.

If the environment only has 64 bits Siteminder and APMSSO, then /opt/CA/caapmsso/bin/libcurl.so is not used.  

Powered by Wolken Software