CVE-2021-45105 has come up on our security scans.

Is SOI 4.2 exposed to this vulnerability?

Release : 4.2

Component : Service Operations Insight (SOI) Manager

CA Help Desk Connector - Release : 1.1.1 and 1.2.0

The overall SOI product is not affected by this vulnerability.

CA Help Desk Connector - Release : 1.1.1 and 1.2.0 Is exposed

CA Help Desk Connector 1.2.1 Released with Log4j-2.17.0 upgrade.

This remediates CVE-2021-45105.

Please upgrade your CA Help Desk Connector.

  SOI Connector Downloads

 Please note: make sure all other components of SOI are at supported versions.

  CA SOI Connectors Compatibility Matrix

CVE-2021-44228 - CVE-2021-45046: Service Operations Insight (SOI) Remote code injection ZERO log4j vulnerability (Broadcom KB article)

CVE-2019-17571 - Is Service Operations Insight (SOI) affected by this vulnerability? (Broadcom KB article)