Question
1
Replies
51
Views
Larsen and Toubro infotech
Posted: August 31, 2018
Last activity: August 31, 2018
Closed
What is the struts framework version in Pega 7.1.9?
there was a new vulnerability released for Apache Struts.
https://cwiki.apache.org/confluence/display/WW/S2-057
https://nvd.nist.gov/vuln/detail/CVE-2018-11776
how to remediate in Pega 7.1.9 ? is there any hotfix provided by pega ?
Hi,
Struts version is 2.3.16.3 in prsysmgmt.war of PRPC 7.1.9
The security vulnerability is in Struts-2.5.16. http://struts.apache.org/announce.html#a20180822-0
Therefore, you may not require the fix on PRPC 7.1.9
However, I suggest you to raise Support ticket to get this verified by Subject matters.