Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Burp Enterprise older JRE version

Sindhoor | Last updated: Oct 08, 2021 03:07PM UTC

Hello, We're currently running the latest version of burp enterprise and have set it to automatic update. We've scans indicating the agent and the enterprise installations making use of older JRE version 1.9.0_4. Having dug a bit deeper, I also noticed there are OpenJDK JRE version of 1.11.x. I'm not sure if the older JRE is of previous older installations. Could you clarify what's the latest JRE version the Enterprise edition makes use of? And if it's okay to clean up the older versions if it doesn't make use of it. Thanks.

Maia, PortSwigger Agent | Last updated: Oct 08, 2021 04:25PM UTC

Hi, Thank you for your message. The majority of Burp Enterprise is running on Java 11, however, there is still one small part running on Java 9, therefore this cannot be cleaned up. We will be updating the remaining component and cleaning this up in the future. New installations are using Java 11 only and you can remove the dependency on version 9 by running the installer manually which will reinstall Burp Enterprise using your current settings.

Nathan | Last updated: May 04, 2022 09:17AM UTC

Support, On the same subject as above, our weekly VA scans performed across our Burpsuite Enterprise infrastructure are picking up on out of date versions of JRE: for example, VA scan detects JRE 11.0.10 installed on Enterprise, but JRE version greater than 11.0.12 is available and is the recommended When Portswigger release a new Enterprise update, does it include the latest available JRE version at time of update release? I imagine Enterprise updates will always being playing JRE version 'catch-up'! i.e the JRE version installed as part of an Enterprise update will be 'behind' the latest known vulnerable versions of JRE exist.

Maia, PortSwigger Agent | Last updated: May 04, 2022 02:59PM UTC

Hi, The latest version of Burp Suite Enterprise Edition is currently using JRE version 11.0.13. We are planning on updating the bundled JRE to version 11.0.14 in the Enterprise release following v2022.4.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.