search cancel

CVE-2021-44228 vulnerability impact on CA CSM

book

Article ID: 230442

calendar_today

Updated On:

Products

Mainframe Software Manager (Chorus Software Manager) Common Services

Issue/Introduction

Is CA CSM (Chorus Software Manager / Mainframe Software Manager) affected by Zero Day Exploit CVE-2021-44228 (Log4Shell 0-Day Vulnerability)?

Environment

Release : 6.0
Component : Chorus Software Manager

Cause

Apache Log4j2 vulnerability - CVE-2021-44228

Resolution

It has been determined that CA CSM is not impacted. We have updated our advisory to include CA CSM to the Non- Affected list of products