Impact of CVE-2023-20861 on API Gateway
search cancel

Impact of CVE-2023-20861 on API Gateway

book

Article ID: 276317

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

Could you please advise when this vulnerability CVE-2023-20861 impacts GW 10.1 and GW 11.0

Environment

All supported API Gateway versions.

Cause

To know the impact of the vulnerablity related to Sprint Framework in Gateway version 10.1 and 11.0

Resolution

The CVE-2023-20861, does not have any impact on API Gateway 10.1 and 11.0.
However, Broadcom would be upgrading the exsiting Spring Framework to the latest available version in 11.0 CR02 build.

Additional Information

CVE-2023-20861 Detail

CVE-2023-20861: Spring Expression DoS Vulnerability