Security Scanners Are Still Detecting CVE-2022-23302 Vulnerability in the AM Server Even After Upgrading to v8.6 Patch 3
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.6 Patch 3
Issue
/opt/rsa/am/appserver/wls/.patch_storage/34236279_Jun_2_2022_21_32_46/files/oracle.wls.core.app.server/12.2.1.4.0/wls.common.symbol/modules/oracle.owasp/com-bea-core-apache-log4j.jar Installed version : 1.2.17
/opt/rsa/am/appserver/wls/.patch_storage/34236279_Jun_2_2022_21_32_46/files/oracle.wls.libraries/12.2.1.4.0/wls.common.symbol/modules/com.bea.core.apache.log4j.jar Installed version : 1.2.17
Cause
Resolution
Related Articles
Upgrading to Authentication Manager 8.4 fails with the error message "Unable to delete file /opt/rsa/am/server/wrapper/bac… Number of Views RSA RADIUS Service stopped after upgrading to AM 8.6 Number of Views Backup and scan for updates using NFS fails after upgrading to RSA Authentication Manager 8.4 Number of Views Authenticating in New PIN Mode from SonicWall Fails After Upgrading to Authentication Manager V8.6 or Later Number of Views RSA Authentication Manager 8.x - Weak Ciphers Vulnerabilities found with Qualys Scan - Updated Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Troubleshooting AFX Connector issues in RSA Identity Governance & Lifecycle RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
