Micro Focus Frequent Contributor
Micro Focus Frequent Contributor

Privileged Account Manager 3.1 Patch Update 3 is GA

Privileged Account Manager 3.1 Patch Update 3 (PAM
• OpenSSL library in Privileged Account Manager is upgraded to 1.0.2l to eliminate OpenSSL security vulnerabilities.
• Privileged Account Manager now supports Windows 2008 R2 Terminal Server.
• Weaker SSL ciphers are replaced with Elliptic Curve Diffie–Hellman (ECDHE) cipher to improve data security.
• CVE-2017-7437 - Addresses the reflected cross-site scripting (XSS) vulnerability that could result in the storage of uncontrolled information.
• CVE-2017-7438 - Addresses the DOM cross-site scripting (XSS) vulnerability.

This release also addresses other software fixes, see the Release Notes for more information.

Helpful Resources
• Release Notes: https://www.netiq.com/documentation/privileged-account-manager-3/npam3103-release-notes/data/npam3103-release-notes.html
• Download URL: https://dl.netiq.com/Download?buildid=MtsbTyzebZw~ and NCC for package updates on the channel
1 Reply
Knowledge Partner
Knowledge Partner

Thank-you for the notification.

Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.