Overview

Information regarding whether Jive 9.0.3.0 is impacted by the Apache 2.4.33 Remote DoS Vulnerability in Mod_md Challenge Handler - CVE-2018-8011 is requested from users.

The Security Team reviewed the question and performed the required tests to provide the answer below.

Environment

Jive Interactive Intranet-Core: Jive Platform - Hosted

Information

The response from the Security and Privacy team is: 

"We have checked the Jive HOP project and can confirm that we do not have any usages of mod_md challenge handler and we do not use the mod_md module for our Apache configuration."

Conclusion

• Jive 9.0.3.0 is NOT affected by the Apache 2.4.33 Remote DoS Vulnerability in Mod_md Challenge Handler - CVE-2018-8011​