Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

RSA-2020-03

Discussion created by Iosif Ziman on Nov 10, 2020
Latest reply on Nov 11, 2020 by Jay Guillette

Like • Show 0 Likes0
Comment • 2

Please suggest if 8.3 P 03 is also affected ?

Outcomes

2 Replies

Hassan Mehsen Nov 11, 2020 2:16 AM
Yes, as perRSA-2020-03 , RSA Authentication Manager 8.5 and earlier are the affected products.
Like • Show 0 Likes0
Actions
Jay Guillette Nov 11, 2020 11:18 AM
Yes, AM 8.3 is affected, and there is no patch for 8.3, only upgrade. RSA-2020-03 is written as if the only fix is to update all the way to AM 8.5, but on this discussion...
https://community.rsa.com/message/962123?commentID=962123&et=watches.email.thread#comment-962123
We determined that all of those vulnerabilities addressed in RSA-2020-03 have been remedied within AM 8.4 if you go to Patch 14. There will also be a hot fix for 8.4 P14 addressing the latest Oracle WebLogic vulnerability fixes from the Oracle WebLogic October 2020 CPU and the Oracle WebLogic Nov. 1 2020 hotfix
000039437 - Security vulnerabilities CVE-2020-14882, CVE-2020-14883 and CVE-2020-14750, others in WebLogic an internal component in WebTier
Like • Show 0 Likes0
Actions

Recommended Content

Incoming Links