Enabling "Include Sql Curve Data" (Beta Functionality) exposes unexpected information in logs
search cancel

Enabling "Include Sql Curve Data" (Beta Functionality) exposes unexpected information in logs

book

Article ID: 406086

calendar_today

Updated On:

Products

Clarity PPM SaaS Clarity FedRAMP Clarity PPM On Premise

Issue/Introduction

Steps to Reproduce: 

  1. Login to Clarity as administrator privileges 
  2. Navigate to Administration --> System Options --> Section Data warehouse Options 
  3. Check Include Sql Curve Data (Beta)

Expected Results: No unexpected information should be exposed in logs 

Actual Results: Unexpected information is exposed in logs accessible to administrators who've been granted access to view logs.

Environment

Clarity 16.3.0, 16.3.1, 16.3.2 

Cause

DE174051

Resolution

  • Broadcom will generate a fix that can be deployed to address the issue.
  • The fix will be deployed for all Broadcom SaaS customer's on GCP as part of the August Monthly Maintenance scheduled for August 8th 2025.
  • Broadcom will work with Rego to deploy the fix for impacted customers in AWS infrastructure.
  • OnPremise customer on impacted version contact Broadcom support to obtain a fix. In addition, till a fix is deployed on the customer environment we recommend customers disable  "Include Sql Curve Data" by following the steps listed below:
    • Login to Clarity
    • Navigate to Classic UI Administration -> System Options --> Section Data warehouse Options
    • Disable "Include Sql Curve Data"
  • Customer can contact Broadcom support for any further details or to obtain steps to remove the option to enable "Include Sql Curve Data"
Powered by Wolken Software