cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Fix ThingWorx vulnerabilities by SUP & support more releases of 3rd party components

Fix ThingWorx vulnerabilities by SUP & support more releases of 3rd party components

Status: Delivered Submitted by 18-Opal on ‎Jan 06, 2021 01:00 AM
3 Comments (3 New)

It may have following types of security vulnerabilities for ThingWorx:

  • Third party components (Tomcat, Java, database, OS, etc.)
  • ThingWorx itself

For security vulnerabilities of the third party applications, generally it needs to update the third party components to fix the issues. But because of the compatibility consideration, sometimes it needs to update/upgrade ThingWorx to fit the updated third-party application.

 

Unfortunately it generally needs much more time to upgrade ThingWorx than updating the third party application.

So it will help to decrease the customer's efforts a lot if:

  • ThingWorx vulnerabilities could be fixed by hot-fix or security-update-patch(SUP), without upgradin ThingWorx.
  • Make ThingWorx support more releases of the third party components. This is to avoid upgrading ThingWorx frequently.

 

 

 

 

See more ideas labeled with:
3 Comments
cbaldwin
13-Aquamarine
13-Aquamarine
‎May 26, 2021 07:40 AM
‎May 26, 2021 07:40 AM
Status changed to: Under Consideration
 
cbaldwin
13-Aquamarine
13-Aquamarine
‎May 26, 2021 09:41 AM
‎May 26, 2021 09:41 AM
Status changed to: Current Functionality

@BrentLi  Please check out the content on this topic here:

 

https://www.ptc.com/en/support/article/CS320194

 

Many 3rd party libraries are updated for security purposes in our patch releases already (e.g. 9.1.2).  These patch releases are not considered upgrades of ThingWorx.

olivierlp
Community Manager
Community Manager
‎Aug 04, 2021 04:19 PM
‎Aug 04, 2021 04:19 PM
Status changed to: Delivered

Please see this article for recommendations for using ThingWorx Solutions with required 3rd party software: https://www.ptc.com/en/support/article/CS320194