ā09-06-2018 01:45 PM
Just want to confirm if the newly released patch 3 for ISE 2.4 addresses the Apache Struts vulnerability as per release notes and applying the Struts2-fix-2.0to2.4 fix is not necessary if patch 3 (for ISE 2.4) is installed.
ā09-06-2018 05:13 PM - edited ā09-06-2018 05:22 PM
The fix for this is called "Struts2-fix-2.0to2.4".
I was made aware ISE 2.4P3 doesn't fix the vulnerability & hotfix is required.
ā09-07-2018 11:31 AM
I just confirmed internally that ISE2.4, P3 does address the vulnerability. The release notes for ISE2.4 also confirms it.
ā09-07-2018 05:14 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
