Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Y Rakesh (YRakhi12)
Accenture

Accenture
IN
YRakhi12 Member since 2015 4 posts
Accenture
Posted: Jan 22, 2019
Last activity: Jan 30, 2019
Posted: 22 Jan 2019 2:24 EST
Last activity: 30 Jan 2019 8:59 EST
Closed

Vulnerabilities in Pega

Below are the vulnerable issues reported by client during security scan:

1. AutoComplete Attribute Not Disabled for Password in Form Based Authentication: how to Disable the Auto Fill for Password?

2. Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32) :

Show More

Below are the vulnerable issues reported by client during security scan:

1. AutoComplete Attribute Not Disabled for Password in Form Based Authentication: how to Disable the Auto Fill for Password?

2. Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32) :

does PEGA use DES, 3DES, IDEA or RC2 ciphers?

3. Hidden RPC Services: Does Pega use Any RPC services ?


Show Less
To see attachments, please log in.
Pega Platform

Posted: 5 years ago
Posted: 30 Jan 2019 6:33 EST
Santanu Bhattacherjee (Santanu) Senior Manager, Cloud Engineering, Management Plane Services
Pegasystems Inc.
IN

Hi

I think its better to raise a support request for this issue. 

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice