My Oracle Support Banner

Security Alert CVE-2018-11776 Patch Availability Document for OFSAA Platform (Doc ID 2440332.1)

Last updated on DECEMBER 03, 2019

Applies to:

Oracle Financial Services Analytical Applications Infrastructure
Information in this document applies to any platform.

Purpose

This document provides the steps required to upgrade to the Struts 2 compatible versions for Oracle Financial Services Analytical Applications platform to address CVE-2018-11776.

Scope

This knowledge document is applicable to all the products (using Struts 2 framework) that are hosted on the OFSAA platform.
Note that the prerequisite version for this upgrade is as follows:

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
 This document provides the steps required to upgrade to the Struts 2 compatible versions for Oracle Financial Services Analytical Applications platform to address CVE-2018-11776.
Scope
Details
 To upgrade Struts 2 from version 2.3.16 to 2.3.35
 To Upgrade Struts 2 from version 2.3.32 to 2.3.35
 To Upgrade Struts 2 from version 2.3.34 to 2.3.35

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.