Gateway Network Vulnerability in 7.9.x

#1

Given the recent updates in version 8 patching vulnerabilities in gateway security, do we need to be concerned about the same vulnerabilities in 7.9.x versions? Specifically with gateway network connections per the latest fix on 8.0.8. Or was this only an issue in v8…

15848: Gateway Network deserialization vulnerability
Prevents a security issue that could enable attackers to remotely execute code on a gateway via the gateway network.

Thanks!

0 Likes

#2

No, the 7.9 gateway network code does not have the same vulnerability. We tested the 8.0 exploit that demonstrated the vulnerability against 7.9, and it did not work.

1 Like

#3

Good to hear! Thanks.

0 Likes