CVE-2021-45105 has come up on our security scans.
Is SOI 4.2 exposed to this vulnerability?
Release : 4.2
Component : Service Operations Insight (SOI) Manager
CA Help Desk Connector - Release : 1.1.1 and 1.2.0
The overall SOI product is not affected by this vulnerability.
CA Help Desk Connector - Release : 1.1.1 and 1.2.0 Is exposed
CA Help Desk Connector 1.2.1 Released with Log4j-2.17.0 upgrade.
This remediates CVE-2021-45105.
Please upgrade your CA Help Desk Connector.
Please note: make sure all other components of SOI are at supported versions.
CVE-2021-44228 - CVE-2021-45046: Is Service Operations Insight (SOI) affected by the Remote code injection in log4j vulnerability?
https://knowledge.broadcom.com/external/article/230292/
CVE-2019-17571 - Is Service Operations Insight (SOI) affected by this vulnerability?