Is PEGA PRPC 7.2.1(Using Websphere server) is affected with Apache Struts Vulnerability CVE-2018-11776
Hi,
We are using the PEGA PRPC 7.2.1 version and Servers are Websphere.
We just notified that ,due to Apache Struts Vulnerability CVE-2018-11776 ,our servers are getting affected.
Can you please help us ,is it impact to us and should be taken remediation.
Early help is highly appreciated.
Thanks,
Kiran
Apache Struts Vulnerability CVE-2018-11776
***Updated by moderator: Lochan to tag SR***
Pegasystems Inc.
IN
Hi Kiran,
Yes, We have an ongoing request for this issue. Please raise an SR / check with your account team on this issue. You can mention Hfix-46874 as the reference.
HSBC
IN
Yes..got the info..Thanks
Accepted Solution
Updated: 12 Sep 2018 21:19 EDT
Pegasystems Inc.
IN
Hello!
We see that an SR was created for the same and HFix-46844 was provided as a resolution.
Thank you!
Cognizant
US
Regarding the Hotfix HFix-46844 we have deployed new prsysmgmt.war in WAS ver 8.5. in our dev environment.
after deployment we have restarted Pega JVM when tried to open SMA link we are getting Error 500: javax.servlet.ServletException: Filter [CharsetFilter]: com.pega.jmx.ui.action.CharsetFilter was found, but is corrupt
Can any one suggest me what needs to be done here ?