...
Kantega SSO Enterprise does not have a webwork1 configuration in the plugin.xml descriptor, and does therefore not have a vulnerable configuration as a third party app based on the current knowledge of the exploit. We will keep staying up to date posted for new updates about the vulnerability’s scope of the vulnerability.
However, Note that Kantega SSO submits authentication to the host system’s Seraph authenticator. This means that if your Jira instance is affected, Kantega SSO will likely offer no additional protection for the exploit, and your system will be vulnerable to authentication bypass. We recommend to follow Atlassian’s advisories for using non-vulnerable versions of Jira and Jira Service Management.
...