According to apache security Advisory S2-045/CVE-2017-5638 for Apache struts 2 and on these versions.2.3.5-2.3.31 and 2.5-2.5.10
SMA is using struts2 as its 3rd party library.
PRPC 7.1.8 seems to use this
I think these are also applied.
HFix-32973 was provoided for 7.18
This Bug was reported in 7.1.8 and is fixed in 7.3 version