Solutions

SECURITY BULLETIN – Deployment Automation CVE-2021-44228 vulnerability



ID:    S143609
Published:    13 December 2021
Updated:    15 December 2021

Operating System(s)

  • All Windows

Product(s)

  • Deployment Automation
 

Description

Potential Security Impact: remote code execution

 

VULNERABILITY SUMMARY

A potential vulnerability has been identified in the Apache log4j library. The vulnerability could be exploited to allow remote code execution.

CVE References: CVE-2021-44228

 

SUPPORTED SOFTWARE VERSIONS (ONLY impacted versions are listed):

None

 

CVSS Version 3.1 Metrics:

Reference
V3.1 Vector
V3.1 Base Score
CVE-2021-44228
N/A
N/A

Resolution

The full Micro Focus statement on the Log4j Vulnerability is available on the Product Security Response Center.

Deployment Automation uses a version of log4j which is lower than 2.0 and therefore is not affected by this vulnerability.

For additional information, please refer to https://logging.apache.org/log4j/2.x/security.html


Rate this Solution

Find Answers

Type a question or describe what you are looking for below

My Recent Searches

Welcome kb sso

Additional Assistance

  • Submit a Case Online
  • FAQs