NEW CVE for Log4j version 1.x https://nvd.nist.gov/vuln/detail/CVE-2021-4104
looks like now log4j-1.2.x.jar is also affected
- Checked arcmc and is showing these jar file versions.
Is there a patch for arcmc?
Cybersecurity
DevOps Cloud
IT Operations Cloud
NEW CVE for Log4j version 1.x https://nvd.nist.gov/vuln/detail/CVE-2021-4104
looks like now log4j-1.2.x.jar is also affected
Is there a patch for arcmc?
Just because there wasn't an answer on this as it was most likely drowned by the much larger thread the official guidance is at: https://community.microfocus.com/cyberres/b/sws-22/posts/summary-of-cyberres-impact-from-log4j-or-logshell-logjam-cve-2021-44228?utm_source=blog&utm_medium=referral&utm_campaign=7014J000000dXXYQA2