Need to verify if the below CVE's are affecting UIM (Log4j 1.x related)
If vulnerable what should be done to overcome this vulnerability.
CVE-2019-17571
https://nvd.nist.gov/vuln/detail/CVE-2019-17571
CVE-2020-9488
https://nvd.nist.gov/vuln/detail/CVE-2020-9488
CVE-2022-23302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23302
CVE-2022-23305
https://nvd.nist.gov/vuln/detail/CVE-2022-23305
CVE-2022-23307
Release : 20.4 /20.4.1
Component : UIM - SECURITY VULNERABILITIES
DX UIM is not affected by given vulnerabilities.
Migrated to log4j 2.x and therefore all are mitigated in 20.4 CU3.
https://support.broadcom.com/web/ecx/solutiondetails?aparNo=99111525&os=MULTI-PLATFORM