Impact of CVE-2025-68161 on Carbon Black EDR
Article ID: 425569
Updated On:
Products
Carbon Black EDR
Issue/Introduction
Third-party software (Apache Solr) on Carbon Black (CB) EDR is using Log4j version 2.17.2.
During a Vulnerability Assessment (VA) scan, it is flagged as vulnerable to CVE-2025-68161 and you want to know the impact.
Resolution
CB EDR is not impacted by CVE-2025-68161.
The vulnerable component (Socket Appender in log4j) is not used by CB EDR. So, it is not applicable to the product.
Feedback
Yes
No
Powered by
