https://connect.hyland.com/t5/alfresco-forum/cve-2024-38816-vulnerability/m-p/484460#M39587 <P>Alfresco is not affected by the vulnerability:</P> <P><A href="https://spring.io/security/cve-2024-38816" target="_blank">https://spring.io/security/cve-2024-38816</A></P> <P><EM>However, malicious requests are blocked and rejected when any of the following is true:</EM></P> <UL> <LI><EM>the <A href="https://docs.spring.io/spring-security/reference/servlet/exploits/firewall.html" target="_blank">Spring Security HTTP Firewall</A> is in use</EM></LI> <LI><EM>the application runs on Tomcat or Jetty</EM></LI> </UL> Wed, 13 Nov 2024 17:18:14 GMT angelborroy 2024-11-13T17:18:14Z https://connect.hyland.com/t5/alfresco-forum/cve-2024-38816-vulnerability/m-p/484437#M39586 <P>I want to know if any version of Alfresco corrects this vulnerability and, if not, how can I solve it?</P> Wed, 13 Nov 2024 12:50:48 GMT https://connect.hyland.com/t5/alfresco-forum/cve-2024-38816-vulnerability/m-p/484437#M39586 Pedro_Kravetz 2024-11-13T12:50:48Z https://connect.hyland.com/t5/alfresco-forum/cve-2024-38816-vulnerability/m-p/484460#M39587 <P>Alfresco is not affected by the vulnerability:</P> <P><A href="https://spring.io/security/cve-2024-38816" target="_blank">https://spring.io/security/cve-2024-38816</A></P> <P><EM>However, malicious requests are blocked and rejected when any of the following is true:</EM></P> <UL> <LI><EM>the <A href="https://docs.spring.io/spring-security/reference/servlet/exploits/firewall.html" target="_blank">Spring Security HTTP Firewall</A> is in use</EM></LI> <LI><EM>the application runs on Tomcat or Jetty</EM></LI> </UL> Wed, 13 Nov 2024 17:18:14 GMT https://connect.hyland.com/t5/alfresco-forum/cve-2024-38816-vulnerability/m-p/484460#M39587 angelborroy 2024-11-13T17:18:14Z