Log4j Vulnerability
Article ID: 426763
Updated On:
Products
Workload Automation Agent
ESP dSeries Workload Automation - Business Agents (dSeries)
ESP dSeries Workload Automation - System Agent (dSeries)
Issue/Introduction
Our security team is telling us we need to upgrade log4j used by Workload Automation Agent to version 2.25.3 or later.
Environment
Workload Automation Agent 12.1.x, 24.0, 24.1
Resolution
The mentioned vulnerability is considered to have a medium impact only when the Log4j2 SocketAppender functionality is used. The Workload Automation Agent does not utilize this specific functionality of Log4j2; therefore, Agent is not impacted by this vulnerability.
Feedback
Yes
No
Powered by
