The RemoteEngineer
tool is a legacy component found within the CA Advanced Authentication product. This folder and its associated contents are not actively used in current product operations and have no functional role in the product's runtime environment.
Location of the RemoteEngineer Tool:
Purpose of the Tool:
Current Usage:
Security Implications:
RemoteEngineer
folder (e.g., libraries or binaries), these findings can generally be considered false positives for production use.CVE-2022-1292 openssl vulnerabilities:
Path : AdvAuth/RemoteEngineer/linux/libs_gui/libssl.so.1.0.0
Reported version : 1.0.2k
Fixed version : 1.0.2ze
Path : AdvAuth/RemoteEngineer/linux/libs_gui/libcrypto.so.1.0.0
Reported version : 1.0.2k
Fixed version : 1.0.2ze
CA Advanced Authentication 9.x
Retention:
Removal:
Exemptions:
Q1: Will removing the RemoteEngineer
folder impact Advanced Authentication operations?
No, the removal of this folder and its contents will not affect the functionality of the product.
Q2: Why does the folder remain in the installation directory?
The folder remains due to legacy packaging and is not actively maintained or used in newer product versions.
Q3: What should I do if vulnerabilities are reported in components within this folder?
You can safely remove the folder or add it to the exclusion list in your vulnerability scanning tool.
For additional questions or assistance, please contact Broadcom Support. You can open the case through our support portal at https://support.broadcom.com.