Question

Log4j Version

  • 6 January 2022
  • 1 reply
  • 31 views

It seems there is also vulnerability in 2.17.0, is there already testing or recommendation on moving to the 2.17.1 version?


1 reply

Userlevel 2
Badge

Hi @salsarocks ,

Thanks for your post.

NetBrain IE is not affected by CVE-2021-44832.  NBIE does not use JDBC with log4j2, and the logging configuration file is only accessible to the system administrator of the servers that are running NBIE.

There is no current plan to patch previously released versions(2.17.0); however, NBIE will upgrade the log4j2 library to the recommended version (2.17.1) in the upcoming 10.1 release.

Reply


Community |  Ideas

Facebook |  Instagram |  Youtube |  Twitter |  LinkedIn
Privacy & Security Statement  |  Terms & Conditions |  Impressum  |  UK Modern Slavery Statement