Problem Note 70798: The HTML Commons component in SAS® Viya® 3.5 is affected by the Apache Velocity vulnerability described in CVE-2020-13936
Severity: High
Description: The HTML Commons component in SAS Viya 3.5 includes a version of Apache Velocity that is affected by CVE-2020-13936.
Potential Impact: A user's web browser might execute untrusted code.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
SAS System | N/A | Microsoft® Windows® for x64 | Viya 3.5 | |
Linux for x64 | Viya 3.5 | |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
Type: | Problem Note |
Priority: | high |
Date Modified: | 2024-05-20 12:53:23 |
Date Created: | 2024-05-16 14:23:49 |