• Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
    Dedicated community for Japanese speakers
  • 한국 커뮤니티
    Dedicated community for Korean speakers
Exit
0

Log4j 1.2.15

New Here ,
Jan 20, 2022 Jan 20, 2022

Copy link to clipboard

Copied

Good Afternoon,

 

In regards to the log4j 1.2.15 JAR file found in "cfusion/lib" directory of ColdFusion2018. We have multiple instances running in multiple enclaves of in a government network, and this file is popping up as a CAT 1 vulnerability. This is an issue because they are saying the log4j-1.2.15 version is no longer supported by Apache. My SysAdmin team and Security team would like to know if there is a plan to resolve this issue and make sure Abode is aware.

Views

161

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Community Expert ,
Jan 21, 2022 Jan 21, 2022

Copy link to clipboard

Copied

If anyone should know, it would be the Adobe Product Security Incident Response Team. Follow the link and you will see their e-mail.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Community Expert ,
Jan 30, 2022 Jan 30, 2022

Copy link to clipboard

Copied

LATEST

Hi @Jesse22753061316b ,

Any news from Adobe PSIRT?

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Documentation