To address the ePO XML Entity Injection vulnerability, I have to upgrade from ePO 4.6.6 to 4.6.7 and then apply HF940148. Successfully tested it on my Development/Test server without backing up any critical files or SQL Database. I'm now scheduling the upgrade for my ePO Production Server. Does this patch require to follow the process outlined in KB66616?
anyway you need to have a backup in case you faced any issue.
since servers team having a weekly backup, I upgraded 3 ePO servers in diffrent clients from 4.6.6 to 4.6.7 then the HF installed without any issue
Thanks for the heads-up. I'll backup the remote SQL Database and critical files as per KB66616. My ePO servers are VMs, so backup copies are available. Just wanted to know what someone else's experienec is with the upgrade. So far no issues with the upgrade on my development server.