Code Fix: Critical security vulnerability when Forms STS is configured for authentication

  • 16 February 2021
  • 0 replies
  • 45 views

Badge +9
 

Code Fix: Critical security vulnerability when Forms STS is configured for authentication

KB003445

PRODUCT
K2 Five 5.0 to 5.2
K2 blackpearl 4.7
K2 Five (5.1) November 2018 Cumulative Update to K2 4.7 December 2019 Cumulative Update
K2 Five (5.2) May 2019 Cumulative Update Fix Pack 27 to K2 Five (5.1) November 2018 Cumulative Update Fix Pack 29

 

Issue Description


If SmartForms is configured to use the Forms STS authentication, it is critical to apply the fix pack.

Resolution

The fix is available in the following K2 versions:

K2 4.7 December 2019 Cumulative Update K2 Five (5.0) December 2019 Cumulative Update K2 Five (5.1) November 2018 Cumulative Update K2 Five (5.2) May 2019 Cumulative Update K2 Five (5.3)
Fix Pack 3 Fix Pack 1 Fix Pack 29 Fix Pack 27 Fix Pack 33
  1. Ensure you have the correct K2 version and/or Cumulative Update installed. See KB001893 to see what Fix Pack level you have installed.
  2. Download the latest Fix Pack using the links in the table above for the version you require.
  3. Install the Fix Pack to apply the fix.

 


0 replies

Be the first to reply!

Reply