Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2019-13498: Cloud Access Manager 8.1.4 - Release Notes

One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4.

CVE
#sql#web#auth#ssl

Release Notes****Cloud Access Manager 8.1.4

Release Notes

November 2018

These release notes provide information about the Cloud Access Manager release.

Topics:****About this release

Cloud Access Manager delivers real productivity gains to your end users, while minimizing the effort needed to control access to your on-premise applications and cloud service accounts. Cloud Access Manager offers:

  • Password wallet and identity federation functions that provide your users with the convenience of single sign-on to all applications, whether they run on your private network or in the public cloud.
  • Web access management functionality using its web proxy technology, allowing you to expose your internal web applications securely to external users.
  • An easy-to-use customizable application portal that provides your users with a convenient launchpad, allowing them to see and navigate to the applications they have access to.
  • Identity federation with home realm discovery that allows you to grant access to users in other forests within your own organization and in other external organizations.
  • For extra security you can configure Cloud Access Manager to require two-factor authentication for external users, or to protect sensitive applications.
  • Just-in-time provisioning which means that your users get access to the applications they need when they need them and not before, giving you cost savings in license seats, while at the same time reducing the administrative burden of application account provisioning.
  • vWorkspace integration to seamlessly bring application virtualization to the Cloud Access Manager environment, allowing vWorkspace application links to be displayed in the application portal, along with other web applications.
  • High availability deployment options for continuity of service and scalability to millions of users.

Cloud Access Manager 8.1.4 is a minor release.

New features

New features in Cloud Access Manager 8.1.4:

  • The newest versions of One Identity’s on-premises products offer a mandatory One Identity Hybrid Subscription, which helps you transition to a hybrid environment on your way to the cloud. The subscription enables you to join Cloud Access Manager with the One Identity Starling software-as-a-service platform. This gives your organization immediate access to a number of cloud-delivered features and services, which expand the capabilities of Cloud Access Manager. When new products and features become available to One Identity Starling, the One Identity Hybrid Subscription allows you to use these immediately for Cloud Access Manager to add value to your subscription.

  • Support for SQL Server 2016.

NOTE: The Security Analytics Engine is no longer available. For more information, see Deprecated features.

Enhancements

The following is a list of enhancements implemented in Cloud Access Manager 8.1.4.

Table 1: General enhancements

Enhancement

Issue ID

Signing AuthNRequest when creating a SAML FEA.

738437

Add the “Strict-Transport-Security” HTTP header to proxy responses to help prevent man-in-the-middle (MITM) attacks.

754963

Add claims to app templates.

705529

Cloud Access Manager can now store and validate multiple signing certificates per federated trust.

432330

Identity Manager 7.1-8.1 Web Portal integration.

672015

Deprecated features

The following is a list of features that are no longer supported starting with Cloud Access Manager 8.1.4.

  • Removal of the Security Analytics Engine: The Security Analytics Engine is no longer available for use with Cloud Access Manager.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907