Vulnerability Fixes:

  1. The SQL injection vulnerability in ‘getDeviceCompleteDetails’ and ‘getAssociatedCredentials’ API’s have been fixed.
  2. General : There was an SQL injection vulnerability in the Alarms section. This issue has been fixed.
  3. General : In Alarms, there was an XSS vulnerability in the Notes column. This issue has been fixed.
  4. General : Apache’s ‘commons-beanutils’ jar has been updated to version 1.9.3 due to ‘Remote Code Execution’ vulnerability in an older version. (Refer: CVE-2018-19403)
  5. General : Unauthenticated access to ‘DataMigrationServlet’ has been fixed. (Refer: CVE-2018-19403)
  6. General : The ‘Browser Cookie theft’ vulnerability has been fixed.
  7. The issue with NBAR application data in Wireless Controllers has been fixed.
  8. Missing I18N keys have been added for Chinese language.

Need help with your update?

Receive expert assistance from set3 Solutions.

Need help? Contact us now on 01403 588 898 to talk to one of our experts, or email info@set3.co.uk.

 

On this website we use first or third-party tools that store small files (cookie) on your device. Cookies are normally used to allow the site to run properly (technical cookies), to generate navigation usage reports (statistics cookies) and to suitably advertise our services/products (profiling cookies). We can directly use technical cookies, but you have the right to choose whether or not to enable statistical and profiling cookies. Enabling these cookies, you help us to offer you a better experience.

For full details please review our Privacy policy