Chat now with support
Chat with Support
Self Service Tools
Knowledge Base
My Account
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
Support Essentials
Awards and Testimonials
Getting Started
License Agreement
Support Guide

Stat Product Notification

Return
Informational

A critical Apache Struts security vulnerability (S20-057/CVE-2018-11776) was documented on August 22, 2018. Please check here for more details about the security vulnerability.

How does this affect me?

Stat is not vulnerable to the CVE-2018-11776 as it does not meet the two conditions that exposes this Struts vulnerability. If you wish to ensure that your security compliance detection scanning solution does not flag the Stat Central Agent for versions 5.7.x – 6.1.x, a patch and instructions can be found below.

Resolution

Apply Stat 6.1.0 hf-e to upgrade to Struts 2.3.35. Please see Knowledge Base article 260698 for instructions of how to apply the patch.

Status

The latest version of Struts is included in 6.1.0 hf-e.