Question JOSE PALAU · Dec 13, 2021 Log4j vulnerability #Java #Caché #InterSystems IRIS Do you know if any InterSystems product is compromised due to the Log4j vulnerability? Product version: IRIS 2020.1 0 0 753
Alexander Pettitt · Dec 13, 2021 The affected class is not part of the required install for Cache 2018.1.5.659.0 or IRIS 2020.1.1.408.0. I would search filesystems for JndiLookup and log4j. Vic Sun · Dec 13, 2021 Please see the following page for official InterSystems guidance! https://community.intersystems.com/post/december-13-2021-advisory-vulnerability-apache-log4j2-library-affecting-intersystems-products
Vic Sun · Dec 13, 2021 Please see the following page for official InterSystems guidance! https://community.intersystems.com/post/december-13-2021-advisory-vulnerability-apache-log4j2-library-affecting-intersystems-products
The affected class is not part of the required install for Cache 2018.1.5.659.0 or IRIS 2020.1.1.408.0.
I would search filesystems for JndiLookup and log4j.
Please see the following page for official InterSystems guidance!
https://community.intersystems.com/post/december-13-2021-advisory-vulnerability-apache-log4j2-library-affecting-intersystems-products