Security scans identify a possible vulnerability with OpenJDK and need to verify the version after an upgrade.

Nessus scan results in claiming a vulnerability with OpenJDK.

Log into the appliance through SSH or Console access and once at a BASH prompt run this command:

java -version

Output should look similar to this:

root@server01:~# java -version
openjdk version "11.0.23" 2024-04-16 LTS
OpenJDK Runtime Environment (build 11.0.23+10-LTS)
OpenJDK 64-Bit Server VM (build 11.0.23+10-LTS, mixed mode)
root@server01:~#

Confirm the version of OpenJDK and if it is a vulnerable version apply any Broadcom provided patches/upgrades available for the product.

• Do not try to patch it using the Linux package manager as that is unsupported and could break your product.

If you are at the latest released version of the product open a Support case with Broadcom and let us know of the vulnerability.