EN
Español
English
Português
    Release Note Aranda Service Desk 8.29.19

    CASE PM-44752-19-201331

    The Moment.js library is updated to version 2.29.4 in the configuration (BASDK), user (USDKV8), and specialist (ASDKV8) web consoles to address an expression of service denial vulnerability when parsing dates as a string, present in previous versions.

    This update requires deleting stored browsing data, such as cache and cookies, to avoid potential compatibility conflicts with the new version of the library when using consoles.

    CASE PM-44754-19-201332

    The Underscore.js library is updated to version 1.13.6 in the Web Configuration (BASDK), User (USDKV8), and Specialists (ASDKV8) consoles to address arbitrary code injection vulnerability through the template feature, present in previous versions.

    This update requires deleting stored browsing data, such as cache and cookies, to avoid potential compatibility conflicts with the new version of the library when using consoles.


    NOTES OR ADDITIONAL INSTRUCTIONS:

    • Run the “Aranda.ASDK.WebV8.Installer.exe” file and follow the installer’s instructions.
    • The executable file functions as both an installer and an update tool.
    • This update applies only to databases in version 8.0.164.
    • If you have any custom settings in the web.config files, you must reapply the setting.
    • Aranda Service Desk consoles that use rich text control are only supported up to IE10. Alternatively, other browsers such as Chrome or Firefox can be used.
    • Tags corresponding to HTML fields such as description, solution and notes, will not apply style changes.