Log4J Vulnerability #2163
inlguy
announced in
Announcements
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
CSET does not have the log4j vulnerability. We do not use java. There is a port of the log4j library called log4net that we do use. The log4j vulnerability is dependent on the jndi interface (which log4net and other ports cannot use).
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
Beta Was this translation helpful? Give feedback.
All reactions