Multiple vulnerabilities in third-party packages used by Alfresco Content Accelerator (ACA) and Alfresco Enterprise Viewer (AEV), were recently identified and require remediation.
All hosted and on-premises ACA and AEV versions are affected.
The Hyland Engineering team has taken necessary steps to mitigate the vulnerability in supported product versions. We strongly recommend all other impacted customers review the following release notes and security bulletins on Hyland Community and take the necessary actions as soon as possible. Cloud customers and partners who manage hosted environments for customers must initiate the upgrade process by opening a support case on Hyland Community. Once submitted, Hyland will coordinate directly with the customer or partner to determine a suitable upgrade schedule.
For more information and guidance, download the security bulletins and view the release notes. Contact your first line of support with additional questions.
