x Want to participate? Join the group to interact
  • State Not Answered
  • Replies 0 replies
  • Subscribers 240 subscribers
  • Views 176 views
  • Users 0 members are here
Browse Forums
Sage 100 Contractor Announcements
119
topics
57
replies
Sage 100 Contractor General Discussion
1k
topics
4k
replies
Sage 300 CRE Announcements
168
topics
526
replies
Sage 300 CRE General Discussion
3k
topics
9k
replies
Sage Construction Management Announcements
4
topics
0
replies
Sage Construction Management General Discussion
16
topics
21
replies
Sage Estimating Announcements
39
topics
3
replies
Sage Estimating General Discussion
189
topics
448
replies
Allan Chok

Redis vulnerability remediation plan

Posted By

Hi,

On my company cyber security announcement, Sage 300 CRE server contain below vulnerabilities. Would like to know whether any remediation plan for these? Which version of latest Sage 300 CRE will remediate below Redis vulnerability.

Redis: Incorrect Type Conversion or Cast (CVE-2018-12453)
Redis: Out-of-bounds Write (CVE-2020-14147)
Redis: Security Features (CVE-2016-10517)
Redis: Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2018-12326)
Redis: Out-of-bounds Write (CVE-2019-10192)
Redis: Out-of-bounds Write (CVE-2019-10193)
Redis: Out-of-bounds Read (CVE-2021-32761)

*Community Hub is the new name for Sage City