ALERT Updates available for SAS Web Server 9.4 : Hot fix S46008
SAS_TSNEWS
Moderator

A new update is available for SAS Web Server , version 9.4 :

 

Issues addressed in S46008

SAS Note 60381

A cross-site scripting vulnerability exists in SAS® Environment Manager

SAS Note 60408

ALERT: The JCraft and JSch libraries that reside in the SAS® Environment Manager server and agent are vulnerable to directory traversal

SAS Note 60664

SAS® Environment Manager contains commons-beanutils libraries that are vulnerable to CVE-2014-0114

This list of notes might be incomplete. For a complete list of issues addressed by this hot fix, visit the hot fix page for S46008

 

Note: A comprehensive list of all SAS hot fixes is available from support.sas.com. You can use the SAS Hot Fix Analysis, Download, and Deployment (SASHFADD) tool to manage your SAS hot fixes.

SAS Innovate 2025: Call for Content

Are you ready for the spotlight? We're accepting content ideas for SAS Innovate 2025 to be held May 6-9 in Orlando, FL. The call is open until September 25. Read more here about why you should contribute and what is in it for you!

Submit your idea!

Article Tags