Question
Stratosphere Technical Consulting LLC
US
Last activity: 24 Oct 2024 12:40 EDT
Information on security advisory CAD-B33066
Current version of pega used for one of our clients is 8.5.3.
The recent security advisory CAD-B33066 has a hotfix provided for only major/latest patch versions, in our case the nearest version is 8.5.6.
Our client has not intention to upgrade to 8.5.6 from 8.5.3.
We wanted to know details of what is protected in 8.5.3 from java injection threats and what is new in the hotfix, meaning what is fixed in the hotfix for 8.5.6 that is not present in 8.5.3?
any info will help us determine correct course of action for us.