1

CVE-2021-44228 Log4j vulnerability

What, if anything, must be done to mitigate this new vulnerability? I am on version 5.0.2 and will not be on 5.1.2 for a while.

1reply Oldest first
  • Oldest first
  • Newest first
  • Active threads
  • Popular
  • On December, 9, 2021, a Remote Code Execution (RCE) vulnerability CVE-2021-44228 was identified in certain Log4j libraries.

    Incorta has completed a review of our applications and components.  We have confirmed that our application and components do not utilized impacted Log4j libraries

    Details:

    Software/Service Log4j (CVE-2021-44228) Impact
    Incorta Application (including loader and analytics services) None
    Zookeeper None
    Spark None
    CMC None
    Hadoop None
    SQLApp None
    Oracle Cloud Connector None
    Datalake Connector None
    Parquet Merge Tool None

    We are following up with our vendors to make sure any of them impacted by the vulnerability are taking appropriate remediation

    For updates on the vulnerability and the status of our application, please visit https://status.incorta.com 


    Scott Blauer
    Sr. Director of IT & Security
    scott.blauer@incorta.com
    480-352-2276 (m)

    Like
Like1 Follow
  • Status Answered
  • 1 Likes
  • 1 mth agoLast active
  • 1Replies
  • 57Views
  • 4 Following

Product Announcement

A new community experience is coming! If you would like to have beta access to provide feedback, please contact us at community@incorta.com.