3 Replies Latest reply on Jan 5, 2022 12:01 AM by Ashwini Ramakrishna

    Additional log4j vulnerabilities

    Chris Mau New Member

      These files were just flagged by our hosting provider as vulnerable.  I do not see these referenced in the mitigation steps article and I could not find anything related to these while searching.  Do we have mitigation steps for these?  I've performed the mitigation steps as outlined for all other offending files.

       

      C:\Program Files\Informatica Cloud Secure Agent\downloads\package-runAJobCli.19\package\lib\log4j.log4j-1.2.17.jar

      C:\Program Files\Informatica Cloud Secure Agent\downloads\package-CCIAgent.3801297\package\ICS\main\cci\plugins\infa\log4j-1.2.12.jar

       

      Thanks,

      -Chris