Need help in remediating the vulnerability CVE-2024-21147
search cancel

Need help in remediating the vulnerability CVE-2024-21147

book

Article ID: 378675

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM) CA Unified Infrastructure Management On-Premise (Nimsoft / UIM) CA Unified Infrastructure Management SaaS (Nimsoft / UIM)

Issue/Introduction

Vulnerability scan results show:

Path: C:\Program Files (x86)\Nimsoft\

Installed version: 8.0.411.9 / build 8.0.411

Fixed version: Upgrade to version 8.0.421 or greater

Environment

  • DX UIM 20.4 CU8

Resolution

To remediate this vulnerability, we need to upgrade the java_jre probe to 1.8.0.422.

https://nvd.nist.gov/vuln/detail/CVE-2024-21147

We have released java_jre 2.21 which is bundled with the latest OpenJDK JRE 1.8u422-b05.

After this new version is deployed, please confirm that the old files are moved.  You may need to restart the robot so that probes will run with the new version.