About jimmyc6767014 - Adobe Experience League Community

Your achievements

0% to

Tip / to gain points, level up, and earn exciting badges like the new

jimmyc6767014

Offline

Joined the community 1/25/18

Level 2

Badges

6

Accepted Solutions

0

View leaderboards

Type

Filter by user contributions

Re: Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

byjimmyc6767014
in Adobe Experience Manager Discussions 12/12/21

No updates as of 12/12/2021 10.00am PST.

Type

Discussions

Views

29.7K

Like

1

Replies

0
Re: Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

byjimmyc6767014
in Adobe Experience Manager Discussions 12/11/21

Here is Adobe's response on the issue. They need time to figure out if log4j 1.2.17 that is inside AEM is affected by this security flaw. [Q1] Is Adobe aware of this Apache log4j library vulnerability?[Adobe] Yes. Adobe is aware of this Apache log4j library vulnerability. [Q2] Does Adobe use the Apa...

Type

Discussions

Views

30.7K

Likes

12

Replies

6
Re: Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

byjimmyc6767014
in Adobe Experience Manager Discussions 12/11/21

If you look at /system/console/bundles, there is a SLF4J over LOG4J bundle in there and Log4J version 1.2.17. Currently, the issues seem to affect log4j 2.x.. it is unclear if 1.2.17 has any vulnerability. I submitted a P1 critical issue to Adobe to see what they have to say.

Type

Discussions

Views

30.9K

Likes

3

Replies

0

Top badges earned by jimmyc6767014