Problem Note 68560: SAS® Environment Manager contains a version of Apache Tomcat that is affected by CVE-2021-33037 and CVE-2021-30640
Severity: Medium
Description: SAS Environment Manager contains a version of Apache Tomcat that is known to be affected by the vulnerabilities described in CVE-2021-33037 and CVE-2021-30640.
Potential Impact: Refer to the above CVE records for details.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
SAS System | SAS Environment Manager | Microsoft® Windows® for x64 | 2.5_M4 | | 9.4 TS1M7 | |
64-bit Enabled AIX | 2.5_M4 | | 9.4 TS1M7 | |
64-bit Enabled Solaris | 2.5_M4 | | 9.4 TS1M7 | |
HP-UX IPF | 2.5_M4 | | 9.4 TS1M7 | |
Linux for x64 | 2.5_M4 | | 9.4 TS1M7 | |
Solaris for x64 | 2.5_M4 | | 9.4 TS1M7 | |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
Type: | Problem Note |
Priority: | high |
Date Modified: | 2022-03-22 14:38:26 |
Date Created: | 2021-10-28 11:04:53 |