CABI Jaspersoft Neo4j vulnerability with DX UIM
search cancel

CABI Jaspersoft Neo4j vulnerability with DX UIM

book

Article ID: 427327

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM)

Issue/Introduction

Security scan reports possible Log4Shell vulnerability in the following files:

/opt/nimsoft/probes/service/wasp/webapps/cabijs/WEB-INF/lib/neo4j-jdbc42-1.0.8.1009.jar

/opt/nimsoft/c/buildomatic/install_resources/war/jasperserver-pro/WEB-INF/lib/neo4j-jdbc42-1.0.8.1009.jar

Environment

DX UIM - Any Version
CABI - Any Version

Cause

Neo4 JDBC jar is included by default with Jaspersoft installations

Resolution

The neo4j-jdbc42-1.0.8.1009.jar file is not needed, and may be safely deleted from these locations.

Additional Information

Note: CABI is no longer supported for DX UIM as of October 1, 2025.  Please see the following links for more details:

Deprecation Announcement for support of CABI JasperReports

DX UIM CABI Replacement Plans after End of Support

Powered by Wolken Software