Request Demo

5.6.10

  • January 16, 2020

Security

  • Fixed RCE vulnerability with apache user code execution in Scheduled Reporting component (CVE-2019-20197) -JO
  • Fixed XSS vulnerability in Scheduled Reporting component and nocscreen (nocscreen can be upgraded from Admin > Manage Components) (CVE-2019-20139) -JO
  • Fixed login redirection to remove double slashes as part of redirection security parsing -JO

Component Updates

Core Config Manager (CCM) 3.0.5

  • Fixed several issues with importing service dependencies [TPS#14737] -SAW