IS connector for ICN is not affected by, or vulnerable to the Log4j vulnerabilities

News

Abstract

Is IBM FileNet Image Services connector for IBM Content Navigator affected by, or vulnerable to CVE-2021-44228, CVE-2021-45046, CVE-2021-45105?

Content

No, IS connector for ICN is not affected by, or vulnerable to the mentioned Log4j vulnerabilities because the software (starting version 1.4.0.10) uses Log4j 2.x libraries (2.17.1) which is not vulnerable/affected by the Log4Shell vulnerabilities.

For the IBM perspective on this vulnerability, refer to the following IBM Product Security Incident Response (PSIRT) blog post:
An update on the Apache Log4j CVE-2021-44228 vulnerability

Related Information

IBM Software Product Compatibility Reports

Image Services connector for IBM Content Navigator documentation

[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVUD","label":"FileNet Image Services"},"ARM Category":[{"code":"a8m50000000Cdy8AAC","label":"FileNet Image Services"}],"Platform":[{"code":"PF002","label":"AIX"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF057","label":"HP"}],"Version":"4.1.2;4.2.0"}]

Tips

IS connector for ICN is not affected by, or vulnerable to the Log4j vulnerabilities

News

Abstract

Content

Related Information

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?