Skip to main content

Question

 Richard Bien (RichardB3397)
Nationwide Building Society
Technical Analyst Developer
Nationwide Building Society
GB
RichardB3397 Member since 2017 19 posts
Nationwide Building Society
Posted: 3 days 8 hours ago
Last activity: 3 days 8 hours ago
Posted: 22 Jan 2026 8:16 EST
Last activity: 22 Jan 2026 8:16 EST

CAD-D992: NATWBS - A26: Pega RPA – Pega Browser Extension (PBE) Vulnerability as pertaining to citrix servers

Does the vulnerability as stated in CAD-D992 released 21 Jan also apply to PBE's which are installed on citrix servers?


We are taking immediate measures to package the 22.1.53 runtime with the new 3.1.45 PBE to mitigate the security issue

We also have a citrix server farm which currently hosts the 22.1.53 runtime which has the 3.1.40 PBE
We will be upgrading the entire farm with the new 3.1.45 PBE so this new issue will be mitigated in due course

However we need to complete an immediate risk assessment on the current citrix server pega software configuration

Because citrix is a more secure environment we want to understand whether this new security vulnerability applies also to PBE's installed on citrix


Thank you

Rich Bien

To see attachments, please log in.
Pega Robotic Desktop Automation
Robotic Process Automation
Financial Services
Robotics System Architect

  • Reply

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice