Fortify SCA is vulnerable for CVE-2021-44228.
Any suggestion for mitigation?
Statement made available from Micro Focus legal around 12/12/2021 @ 5:34 pm CST.
If you've identified anything to the contrary you can report it here: www.microfocus.com/.../product-security-response-center
Here are a couple of links with additional information community.microfocus.com/.../summary-of-cyberres-impact-from-log4j-or-logshell-logjam-cve-2021-44228 and www.microfocus.com/.../log4j