This release includes the following updates and fixes.
Work Order | Description |
---|---|
NSWA-1390 | Fixed an issue in which user authentication would sometimes fail. |
NSWA-1395 | Implemented updates to address CVE-2017-12150. |
NSWA-1405 | Fixed an issue in which an authenticated user could use the report scheduler to launch a cross-site scripting attack against other users. This issue was identified by Matt Bergin at Korelogic. |