Forums, Documentation & Knowledge Base - ComponentSpace

Apache Log4j Vulnerability - CVE-2021-44228


https://componentspace.com/forums/Topic11960.aspx

By ComponentSpace - 12/21/2021

Log4j is a Java-based project of the Apache Software Foundation that provides logging services.

None of the ComponentSpace SAML products use Apache Log4j and therefore they are not impacted by the CVE-2021-44228 vulnerability.

https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/apache-releases-log4j-version-2150-address-critical-rce
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
https://logging.apache.org/log4j/2.x/security.html