What to perform when nginx Bundled With The HAA Is Using Outdated Version: CVE-2021-23017 ?
Security scan reports the nginx within /opt/redislabs is using outdated version.
Security tooling is detecting an RCE in the nginx bundled with the HAA: CVE-2021-23017
Security issue in the Nginx resolver was identified
UiPath is not affected by this as resolver directive is not used in configuration. 'nginx' is going to be removed completely from Redis Enterprise in an upcoming release (6.2.4) as all the functionality has already been moved to Envoy.
The Official date of release of the Upcoming version is 21st October 2021 and within a couple of weeks this shall be modified in HAA.