Desktop Central is not vulnerable to CVE 2020-9490

Is Desktop Central vulnerable to this CVE?

No, Desktop Central is not vulnerable to CVE-2020-9490  vulnerability. Read the document fully for further details.

What was the issue?

A specifcally crafted sequence in HTTP/2 requests sent to Apache HTTP versions 2.4.20 to 2.4.43, could crash the server.

Why Desktop Central is not vulnerable to this CVE?

CVE-2020-9490 will not affect Desktop Central as HTTP/2 requests are not used.

Future plan for Upgrade

Although the Desktop Central is not vulnerable to this CVE, we'll be upgrading to the latest Apache version during our regular third-party components upgrade cycle.