Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Dattatray
New Contributor

Vulnerabilities in FortiEMS related to Oracle JAVA

We are using FortiEMS in our organization. And recently we have received a vulnerability related to Oracle JAVA on EMS server side. So, please suggest whether JAVA is required on EMS server side.

 

Apache 2.4.x < 2.4.62 multiple vulnerabilities - High

Oracle JAVA SE multiple vulnerabilities - High

 

Please refer attached snap.

 

Thanks.

Dattatray
Dattatray
1 Solution
btan
Staff
Staff

As per check internally, EMS do not use Java at all.

The latest EMS 7.2.5 is already using Apache 2.4.62, should fix your < 2.4.62 CVEs.

 

For more detailed discussion, kindly raise a Support Ticket.
Thank you.

Regards,
Bon

View solution in original post

2 REPLIES 2
rosatechnocrat
Contributor II

FortiEMS for sure uses Apache. 
Not Clear about JAVA SE. You may check the release notes or admin guide for Java confirmation. 

Rosa Technocrat --

Also on YouTube---

Please do Subscribe
Rosa Technocrat --Also on YouTube---Please do Subscribe
btan
Staff
Staff

As per check internally, EMS do not use Java at all.

The latest EMS 7.2.5 is already using Apache 2.4.62, should fix your < 2.4.62 CVEs.

 

For more detailed discussion, kindly raise a Support Ticket.
Thank you.

Regards,
Bon
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors