Policy Manager 15.30 Hotfix 7

Release to manufacturing

More information

We have released a new hotfix 7 for Policy Manager 15.30

This hotfix

  • Addresses a vulnerability where an unauthenticated remote user can perform remote code execution on the client machine.
  • The hotfix is available for both Windows and Linux versions of Policy Manager 15.30, and Policy Manager Proxy, and is available from our Download Center.

This hotfix also addresses CVE-2022-38162 (XSS vulnerabilities), CVE-2022-42889 (Apache Commons Text), and supercedes Hotfixes 3-6.

Customers are advised to ensure that they have the latest version of Policy Manager installed (15.30), together with all available hotfixes.

For security reasons, we recommend that you always upgrade to the latest product versions.

Links

    Date

  • 2023-04-04