Common Gateway - Security Fixes

The following security fix applies to both Classic Gateway and NextGen Gateway.

Known Vulnerability in Google Chrome Package

We have identified high-severity vulnerabilities in the Google Chrome package, including a serious flaw in the V8 JavaScript and WebAssembly engine. This vulnerability could allow attackers to execute remote code or cause browser crashes if exploited. Prompt action is advised to mitigate these risks and maintain the stability of your Gateway environment.

We recommend the following workaround depending on your Gateway type. This vulnerability has been addressed in patch version 20.0.4.

• If you are planning to upgrade to version 20.0.4, no action is required. The patch will automatically update the chrome package.
• If you are not upgrading to 20.0.4, you must manually update the chrome package using one of the following methods:
  • For Classic Gateway, see Update Instructions page.
  • For NextGen Gateway, see Update Instructions page.