Please investigate the Struts2 vulnerability

Document ID : KB000013547
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

Please investigate the Struts2 vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638 and let me know whether Autosys and/or UWCC is exposed. 

We are using version 11.3 of Autosys. In this version, does it use Struts2 in the implementation of this software? 

Question:

Are we vulnerable to the Struts2?

 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638

Environment:
All
Answer:

No, Autosys and WCC Post 11.3 does not use those libraries.