Help

Security vulnerabilities in Alfresco Content Services 7.0

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
tmljack
Member II
‎1 Jul 2021 11:45 PM

Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

I'm attempting to privately communicate a number of security vulnerabilities I have found in the current version of Alfresco Content Services, I haven't checked the community edition but the vulnerabilities are likely to be present there too.

Is there a secure way to submit these? I've already attempted to contact security@alfresco.com but have received no reply.

Labels
0 Kudos
1 Solution

Accepted Solutions
EddieMay
Alfresco Employee
‎2 Jul 2021 9:29 AM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

Hi @tmljack 

I've reached out to you directly - we should be able to connect you with appropriate people internally.

Thanks,

Digital Community Manager, Alfresco Software.
Problem solved? Click Accept as Solution!

View solution in original post

5 Replies
abhinavmishra14
Advanced
‎2 Jul 2021 2:29 AM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

May be @EddieMay will be able to redirect to correct channel to pass on the concerns.

~Abhinav
(ACSCE, AWS SAA, Azure Admin)
0 Kudos
EddieMay
Alfresco Employee
‎2 Jul 2021 9:29 AM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

Hi @tmljack 

I've reached out to you directly - we should be able to connect you with appropriate people internally.

Thanks,

Digital Community Manager, Alfresco Software.
Problem solved? Click Accept as Solution!
tmljack
Member II
‎2 Jul 2021 10:20 AM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

Thank you for the prompt response, I did not receive any direct communication on my end at this stage that I can see.

Feel free to send me an email however and am looking forward to being able to share the information in a secure manner.

0 Kudos
EddieMay
Alfresco Employee
‎5 Jul 2021 1:58 PM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

Hi @tmljack 

I did email you last week but I think it got bounced back. Have emailed again just now.

Thanks again,

Digital Community Manager, Alfresco Software.
Problem solved? Click Accept as Solution!
0 Kudos
swatcat91
Member II
‎14 Mar 2023 11:06 PM

Re: Security vulnerabilities in Alfresco Content Services 7.0

Jump to solution

Hi Eddie,

I have been trying to get in touch with your team to report a new issue in Alfresco 7.x. I have mailed to appsecurity@hyland.com multiple times but I am unable to get a reply.

https://hub.alfresco.com/t5/alfresco-content-services-forum/vulnerability-in-alfresco-enteprise/m-p/... 

Can you direct me to the correct contact to report a security vulnerability ?

0 Kudos
Alfresco Content Services Forum

Ask for and offer help to other Alfresco Content Services Users and members of the Alfresco team.

Related links:

We use cookies on this site to enhance your user experience

By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods).   If you are not ok with these terms, please do not use this website.