About API-Portal Vulnerability

Document ID : KB000110133
Last Modified Date : 30/08/2018
Show Technical Document Details
Question:
Does API Portal take the influence of the security vulnerability? 
If so, is the fix included in the product? 
・CVE-2018-1336 
・CVE-2018-2952 
Environment:
API Portal 3.1
Answer:
・CVE-2018-1336 :
* It is not affected since 3.1 uses Tomcat 6.0 (3.5 is affected and is corrected by CR9).

・CVE-2018-2952 :
* It is not affected since the Portal does not use Applets and Java Web Start Application or expose web services.