Pega has identified hotfixes that are essential to maintaining secure applications built on the Pega Platform. Ensuring these hotfixes are installed in your environment is one of the key steps of our Security Checklist on the Pega Community.
The best way to ensure you have all of the latest fixes is to keep your environment updated on the latest Platform Patch Release. However, some hotfixes are deemed as essential during the Platform Patch Release development cycle before they are made generally available. In such cases, we are listing them here until the Platform Patch Release is generally available.
Currently, the essential hotfixes for Pega 8.x are:
These hotfixes have been proactively installed in Pega Cloud environments. On-premise clients can submit a request for these hotfixes using the My Support Portal.
Pega 7.x and PRPC 6.x
The best way to ensure you utilize the full suite of Pega’s offerings is to be on Pega Infinity – our Pega 8.x release. However, if you are on a legacy version of the Pega platform, the following essential hotfixes are available and should be installed in your environments:
In the support portal>Choose New Request > For something I need.
From the Service request field, select Other.
In the Short Description, enter “Security Hotfix – C20”.
Fill out the remaining fields on the Create tab appropriately and click Continue.
In the Describe the issue field, enter the Pega Platform version(s) for which you are requesting the hotfix(es).
Verify your communication preferences on the next tab and click Finish.