ISN 2019-05: UMS HA Vulnerability

Score: High

A security issue affects Universal Management Suite (UMS) in the following versions:

  • UMS 5.x if using High Availability feature
  • UMS 6.x if using High Availability feature

Details

It has been discovered that a UMS component used for the High Availability (HA) feature has a debug port open. This may enable a remote attacker to read information and execute Java code in the context of the Java VM.

Update instructions

Update to UMS 6.02.100 or newer.

To update your UMS installation, please follow these instructions:

https://kb.igel.com/endpointmgmt-6.01/en/updating-a-ums-installation-10323637.html

Last update: June 13, 2019