Is the issue corrected if I download newest versions? We are upgrading versions at a customer site at the moment. WIll I need to push out hotfix after upgrading from 9,10 -> 11?
The latest version of Client Security - 11.61 has the fix built in. If you'll upgrade to it, no need to install a hotfix.
If you are upgrading to the version affected by the vulnerability, then yes, you should push the hotfix after upgrade.
Perfect, we went to CS 11.61. I will skip the hotfix them.
What about Server Security? We upgraded to 11.01 but I already applied the hotfix for them.
This is correct. Server Security 11.01 requires a hotfix.