Cybersecurity
DevOps Cloud
IT Operations Cloud
OpenText product name changes coming to the community soon! Learn more.
The article will point to a hotfix that is available to bring the Tomcat to 9.0.97 or later to avoid CVE-2024-52316 reports.
Operations Bridge Manager (OBM) 24.2
The OBM servers have been flagged for CVE-2024-52316 Apache Tomcat: Authentication bypass when using Jakarta Authentication API:
https://nvd.nist.gov/vuln/detail/CVE-2024-52316
https://www.cve.org/CVERecord?id=CVE-2024-52316
https://lists.apache.org/thread/lopzlqh91jj9n334g02om08sbysdb928
Does this vulnerability apply to OBM servers, and if so, is there a fix yet?
For cause and resolution, read the complete knowledge article.
Top Comments