Updates for recent Log4J security vulnerabilities
There were number of releases over the months of December and January to fix the known Log4J vulnerabilities. The following Geneos components and integrations were affected by vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832. We can also confirm that no other Geneos components are affected.
- Active Console
- Web Dashboard
- Terracotta Messaging integration
- VMware integration
We recommend upgrading to the latest version Geneos 5.12.0 or newer. If you are unable to upgrade, please see the mitigation and workaround information in Vulnerability in Apache Log4j.