Announced 14 June 2019

Score: High

A security issue affects Universal Management Suite (UMS) in the following versions:

  • UMS 5.x if using High Availability feature
  • UMS 6.x if using High Availability feature

Details

It has been discovered that a UMS component used for the High Availability (HA) feature has a debug port open. This may enable a remote attacker to read information and execute Java code in the context of the Java VM.

Update Instructions

Update to UMS 6.02.100 or newer.

To update your UMS installation, please follow these instructions: Updating a UMS Installation