This hotfix includes the changes listed in the following sections. One Identity may generate additional hotfixes for future releases of the product.This hotfix addresses a vulnerability issue. The minimum version required for installing this hotfix is 8.1.4.
Please download the Hotfix 1 by clicking here.
The following is a list of issues resolved in this hotfix.
|Resolved Issue||Issue ID|
|Proxy property cam.disableAddingXFrameOptionsHeader no longer allows framing||712693|
|Proxyless Formfull does not send domain when set to use domain\user in the UI||801861|
|SAML Logout sends URN not HTTPS||802059|
|Security Vulnerability - OTP validation||803533|
|Security Vulnerability - CSRF||803534|
Before upgrading to this hotfix, please ensure that you have a current backup of the existing installation. The hotfix may be applied as an upgrade to an existing Cloud Access Manager installation by running the appropriate executable on the host system(s) and following the wizard instructions.
To make it possible to restore Cloud Access Manager to an earlier version, before applying the hotfix you must