Following a thorough investigation, we have identified an underlying service that may be vulnerable to the log4j CVE-2021-44228 vulnerability. We have created a patch that addresses the vulnerability and urge you to deploy this patch to all your Web Isolation gateways as soon as possible in order to avoid service interruption or the potential of a security breach. This patch needs to be applied to all ties, proxies and the manager.
Please note this is a critical patch that needs to be applied to ensure the Web Isolation service and its dependent services remain secure and perform as expected.
Log4j CVE-2021-44228 vulnerability.
cd /home/fireglass
wget <temporary download link>
sudo chmod 777 log4j_patch_on_prem.sh
sudo chmod 777 log4jproject.tar.gz
sudo chown fireglass:fireglass log4j_patch_on_prem.sh
sudo chown fireglass:fireglass log4jproject.tar.gz
su fireglass
./log4j_patch_on_prem.sh <PASSWORD>