CVE-2021-44228 - CVE-2021-45046: Service Operations Insight (SOI) Remote code injection ZERO log4j vulnerability
search cancel

CVE-2021-44228 - CVE-2021-45046: Service Operations Insight (SOI) Remote code injection ZERO log4j vulnerability

book

Article ID: 230292

calendar_today

Updated On:

Products

CA Service Operations Insight (SOI)

Issue/Introduction

Are any of the components of SOI affected by the log4j vulnerability that was announced recently - CVE-2021-44228?

 

Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints.

An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled

Environment

Service Operations Insight (SOI) 4.2

CA Help Desk Connector - Release : 1.1.1 and 1.2.0

 

Cause

This vulnerability affects all versions of log4j from 2.0-beta9 to 2.14.1

Resolution

The overall SOI product is not affected by this vulnerability.

However, all versions of the CA Help Desk Connector are affected.

Please upgrade your Help Desk Connector to version 1.2.1 to remediate this vulnerability.

https://support.broadcom.com/external/content/release-announcements/CA-Service-Operations-Insight-Connectors/6482

Please note: Make sure all other components of SOI are at supported versions:

https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/service-operations-insight-connectors/connectors/ca-soi-connectors-compatibility-matrix.html

 

if you are unable to upgrade, please contact support and reference this techdoc.

.

.

Additional Information

https://nvd.nist.gov/vuln/detail/CVE-2021-44228

 

CA Embedded Entitlements Manager(EEM) is not affected by the log4j zero day vulnerability

https://knowledge.broadcom.com/external/article/230311/

 CA Process Automation is not affected by the log4j zero day vulnerability

https://knowledge.broadcom.com/external/article/230306/

CVE-2021-45105: Is Service Operations Insight (SOI) affected by this log4j vulnerability

https://knowledge.broadcom.com/external/article/231039/