CVE-2021-45046 - log4j Vulnerability and AutoSys Workload Automation, Workload Automation Agents, And Workload Automation iXP
search cancel

CVE-2021-45046 - log4j Vulnerability and AutoSys Workload Automation, Workload Automation Agents, And Workload Automation iXP

book

Article ID: 230677

calendar_today

Updated On:

Products

CA Workload Automation AE - Scheduler (AutoSys) CA Workload Automation AE - System Agent (AutoSys) CA Workload Automation AE - Business Agents (AutoSys) CA Workload Automation iXP

Issue/Introduction

 log4j vulnerability CVE-2021-45046 impact on Autosys Workload Automation

Environment

AutoSys Workload Automation / WCC(WebUI)

Workload Automation Agents 

Workload Automation iXP

EEM

Resolution

Broadcom Engineering has confirmed that all GA versions of the following AutoSys components and related products are not affected by this vulnerability...

AutoSys Workload Automation - Scheduler, Application Server, Client, WebUI(WCC), AEWS (AutoSys Web Server), SOAP Web Server, Common Services (Csam, CCI, etc.)
Embedded Entitlements Manager (EEM)
Workload Automation System Agent and Plugins
Workload Automation iXP

These products are distributed with log4j 1.x, which is not impacted by this vulnerability. 

Reference:Security

It is recommended to upgrade to latest GA version of the above products and apply latest maintenance also 

Additional Information

Powered by Wolken Software