Wikis - Page

Knowledge Document: Security Vulnerability CVE-2024-12799 - Insufficiently Protected Credentials

0 Likes

An Insufficiently Protected Credentials vulnerability has been discovered in OpenTextTm Identity Manager Advanced Edition 4.8.5.0. The issue affects Identity Manager Advanced Edition versions till 4.9.0.0. CVE reference CVE-2024-12799

Labels:

Support Tips/Knowledge Docs
Comment List
  • For 4.9 and 48.7 this is a simple drop in a file.

    For 4.8.6 and earlier versions, they expect you to extract a jar, modify a file, and re-jar the file.

    The curious question is why not provide older pre-built files as well?  I get not supported, but for security patches, seems like they might want to.

Related
Recommended