1,126
edits
Difference between revisions of "Apache Log4j & CMOD ODWEK ICN"
Apache Log4j & CMOD ODWEK ICN (view source)
Revision as of 08:57, 11 December 2021
, 08:57, 11 December 2021Added extra link to log4j.
m (Increased verbosity. :)) |
m (Added extra link to log4j.) |
||
| Line 2: | Line 2: | ||
This article discusses IBM Content Manager OnDemand (CMOD), the OnDemand Web Enablement Kit (ODWEK), IBM Content Navigator (ICN) and the Apache Log4j library, for which a Remote Code Execution (RCE) vulnerability is actively being exploited, which can give attackers control of the affected servers. | This article discusses IBM Content Manager OnDemand (CMOD), the OnDemand Web Enablement Kit (ODWEK), IBM Content Navigator (ICN) and the Apache Log4j library, for which a Remote Code Execution (RCE) vulnerability is actively being exploited, which can give attackers control of the affected servers. | ||
'''Please upgrade as soon as possible, this vulnerability is being actively exploited on publicly facing systems.''' | '''Please upgrade as soon as possible, this vulnerability is being actively exploited on publicly facing systems.''' Download Link: [https://logging.apache.org/log4j/2.x/download.html Apache Log4j] | ||
This issue has been assigned the following designation: CVE-2021-44228 | This issue has been assigned the following designation: CVE-2021-44228 | ||