Bringing together the Apache Cassandra experts from the community and DataStax.

Want to learn? Have a question? Want to share your expertise? You are in the right place!

Not sure where to begin? Getting Started

 

question

yun avatar image
yun asked Erick Ramirez edited

Is there any impact of the log4j vulnerability CVE-2021-4104 on Opscenter ?

Hello All,

Is there any impact of the log4j vulnerability CVE-2021-4104 on Opscenter?

We are using Opscenter 6.1.6 and it has /usr/share/opscenter/lib/jvm/log4j-1.2.9.jar

opscentercve
10 |1000
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

steve.lacerda avatar image
steve.lacerda answered yun commented

The CVE requires the JMSAppender, which neither Opscenterd nor the agents use. Thus, it is not affected by the vulnerability.

1 comment Share
10 |1000
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

yun avatar image yun ·

Thank you.

0 Likes 0 ·