Knowledge Doc: Vulnerability "CVE-2021-4104 EOL/Obsolete Software: Apache Log4j 1.X Detected" detected in Digital Lab

0 Likes

For "EOL/Obsolete Software Apache Log4j 1.X Detected" vulnerability in Digital Lab 24.2.

Environment

UFT Digital Lab any versions.
Linux OS.


Situation

Vulnerability is scanned from the folder of Digital Lab on Linux OS - CVE-2021-4104 - Apache Log4j 1.2 Remote Code Execution Vulnerability

EOL/Obsolete Software: Apache Log4j 1.X Detected from path in Linux OS: 

  • /opt/UFTMobile/server/jetty/webapps/hp4m-connector/WEB-INF/lib/log4j-1.2.17.jar
  •  /opt/UFTMobile/server/jetty/webapps/instrumentation/WEB-INF/lib/log4j-1.2.17.jar
  • /opt/UFTMobile/server/jetty/webapps/security/WEB-INF/lib/log4j-1.2.17.jar

Read full article

Labels:

Support Tips/Knowledge Docs
Comment List
Related
Recommended