1,126
edits
Difference between revisions of "Apache Log4j & CMOD ODWEK ICN"
Apache Log4j & CMOD ODWEK ICN (view source)
Revision as of 21:33, 27 January 2022
, 21:33, 27 January 2022→Versions Shipped with CMOD
(Added link to CMOD 10.5 Fix Pack 4 Log4j fix) |
|||
| Line 32: | Line 32: | ||
== Versions Shipped with CMOD == | == Versions Shipped with CMOD == | ||
'''''NOTE:''''' CMOD Fixpacks with the Log4j patch have been released: [[Main_Page#IBM_CMOD_Fixpacks_.26_Security_Bulletins]] | |||
{| class="mw-collapsible wikitable" style="text-align: center; | {| class="mw-collapsible wikitable" style="text-align: center; | ||
!CMOD Version||Apache Log4j version(s)||Vulnerable version? ||Comment | !CMOD Version||Apache Log4j version(s)||Vulnerable version? ||Comment | ||
| Line 52: | Line 55: | ||
|style="text-align: left;|ICN v3 is not vulnerable in the default configuration, but sites that have enabled the JMSAppender feature could be exploited. | |style="text-align: left;|ICN v3 is not vulnerable in the default configuration, but sites that have enabled the JMSAppender feature could be exploited. | ||
|} | |} | ||
== Impact == | == Impact == | ||