Log4J 2 CVE-2021-44228 Vulnerability
search cancel

Log4J 2 CVE-2021-44228 Vulnerability

book

Article ID: 230834

calendar_today

Updated On:

Products

IT Analytics

Issue/Introduction

Is IT Analytics (ITA) susceptible to the Log4j 2 vulnerability identified in CVE-2021-44228?

Environment

Release : 2.9.1

Component : Microsoft Internet Information Services (IIS)

Resolution

The IT Analytics (ITA) application and its database have been confirmed to not be susceptible to the Log4j 2 vulnerability defined in CVE-2021-44228.

Please refer to the following security advisory for a comprehensive list of Symantec products and their susceptibility to CVE-2021-44228:

Symantec Security Advisory for Log4j 2 CVE-2021-44228 Vulnerability

Additional Information

Links to security advisories for other Broadcom products can be found here:

Broadcom Response to Log4j Vulnerability

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2:

https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021-44228-apache-log4j2/

Microsoft Update Guide for Apache Log4j Remote Code Execution Vulnerability:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-44228

Powered by Wolken Software