Solved: CVE-2024-56337 and CVE-2024-50379

ghassanzghaib · Posted 01-14-2025 02:44 PM

Hi,

Anyone aware if the Tomcats running the SAS 9.4 M8 software are exposed to the following vulnerabilities CVE-2024-56337 and CVE-2024-50379?

I checked the SAS securities bulletin and found no mention of the above vulnerabilities.

Thanks.

MargaretC · Posted 01-14-2025 02:54 PM

I see that the CVE-2024-50379 will be fixed with the Q1 2025 security fix.

MargaretC · Posted 01-14-2025 02:54 PM

I see that the CVE-2024-50379 will be fixed with the Q1 2025 security fix.

ghassanzghaib · Posted 01-14-2025 03:15 PM

Thank you Margaret for your prompt reply.

kl2412 · Posted 01-27-2025 10:38 AM

Hello. There is a page where we can view when the Q1 2025 Security fix will be available or know when it will be out?

srini007svb · Posted 02-15-2025 02:02 AM

Any ETA on the Q1 20205 Hotfix Release.

Thanks in advance.

gothaggis · Posted 04-30-2025 03:33 PM

Is there any update on a fix for CVE-2024-50379? I also see vulns (regarding SAS version of Tomcat) for CVE-2024-54677 and CVE-2024-52316

CVE-2024-56337 and CVE-2024-50379