Release Warnings Regarding enaio®: enaio® appconnector
This information is updated periodically as soon as our analyses deliver new findings. Please check back periodically.
enaio® appconnector
Under certain conditions enaio® appconnector can be susceptible to session hijacking and depending on the configuration also to escalation of privileges.
Due to potential sensitivity of the found security issue, the patch is available not only for the enaio® versions that are currently in support (10.10 and 11.0), but also for enaio® 9.10 and 10.0 which are not supported anymore. Nevertheless, we strongly recommend updating to one of the newer supported versions, to continue receiving this and many other security updates and bug fixes.
The issue is resolved with following hotfixes:
osappconnector_setup.exe 9.10.0.150
osappconnector_setup.exe 10.0.0.150
osappconnector_setup.exe 10.10.0.150
osappconnector_setup.exe 11.0.0.150
enaio® appconnector has been discontinued as of enaio 10.0. From version 10.0 onwards, it receives only security and bug fixes and is not further developed. The DMS microservice is available as an alternative. This currently comes with a significantly smaller scope but with a new technology stack: scalable, cloud-enabled microservice and built for large systems. The long-term goal is to gradually grow this REST API and to align its functional scope with that of enaio® appconnector. For concrete requests from your side in the context of new projects please contact directly pm@optimal-systems.de
on the right.
areas. Use the toolbar to show all hidden areas at once:
