Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
My Communities
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
VIP (Validation ID Protection)
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
log4j still detected on version 9.10.1
Atifah Abdul Latif
Jan 10, 2023 12:51 AM
Hi Supports, Customer have updated their version to the latest one (9.10.1). Did followed the steps ...
Namish Tiwari
Jan 10, 2023 09:30 AM
Hi Atifah, Could you send the location where this log4j 1.x reference is found. Did you see this inside ...
Atifah Abdul Latif
Jan 10, 2023 07:39 PM
Hi Namish, Here the results of the scan - "..\bin\wrapper.jar;bootstrap.jar;..\ext\commons-logging-1.1.3.jar;..\ext\log4j-1.2.17.jar" ...
Namish Tiwari
Jan 11, 2023 09:40 AM
Hi Atifah, This issue need more investigation and will be best handled through a support case, will ...
1.
log4j still detected on version 9.10.1
0
Recommend
Atifah Abdul Latif
Posted Jan 10, 2023 12:51 AM
Reply
Reply Privately
Options Dropdown
Hi Supports,
Customer have updated their version to the latest one (9.10.1). Did followed the steps in this
KB
. But log4j still being detected when they run the vulnerability scan.
Appreciate any advice on this.
Thank you,
Atifah
2.
RE: log4j still detected on version 9.10.1
0
Recommend
Broadcom Employee
Namish Tiwari
Posted Jan 10, 2023 09:30 AM
Reply
Reply Privately
Options Dropdown
Hi Atifah,
Could you send the location where this log4j 1.x reference is found. Did you see this inside the Enterprise Gateway .bak folders?
Send us the location and do you have multiple environments and this is observed in all the environments or not?
-Namish
Original Message
Original Message:
Sent: Jan 10, 2023 12:50 AM
From: Atifah Abdul Latif
Subject: log4j still detected on version 9.10.1
Hi Supports,
Customer have updated their version to the latest one (9.10.1). Did followed the steps in this
KB
. But log4j still being detected when they run the vulnerability scan.
Appreciate any advice on this.
Thank you,
Atifah
3.
RE: log4j still detected on version 9.10.1
0
Recommend
Atifah Abdul Latif
Posted Jan 10, 2023 07:39 PM
Reply
Reply Privately
Options Dropdown
Hi Namish,
Here the results of the scan -
"..\bin\wrapper.jar;bootstrap.jar;..\ext\commons-logging-1.1.3.jar;..\ext\log4j-1.2.17.jar"
Yes, it is multiple environments, and the issue was observed on all of the environments.
Regards,
Atifah
Original Message
Original Message:
Sent: Jan 10, 2023 09:30 AM
From: Namish Tiwari
Subject: log4j still detected on version 9.10.1
Hi Atifah,
Could you send the location where this log4j 1.x reference is found. Did you see this inside the Enterprise Gateway .bak folders?
Send us the location and do you have multiple environments and this is observed in all the environments or not?
-Namish
Original Message:
Sent: Jan 10, 2023 12:50 AM
From: Atifah Abdul Latif
Subject: log4j still detected on version 9.10.1
Hi Supports,
Customer have updated their version to the latest one (9.10.1). Did followed the steps in this
KB
. But log4j still being detected when they run the vulnerability scan.
Appreciate any advice on this.
Thank you,
Atifah
4.
RE: log4j still detected on version 9.10.1
0
Recommend
Broadcom Employee
Namish Tiwari
Posted Jan 11, 2023 09:40 AM
Reply
Reply Privately
Options Dropdown
Hi Atifah,
This issue need more investigation and will be best handled through a support case, will you please open one and we will work on that to address this.
Thanks
Namish
Original Message
Original Message:
Sent: Jan 10, 2023 07:38 PM
From: Atifah Abdul Latif
Subject: log4j still detected on version 9.10.1
Hi Namish,
Here the results of the scan -
"..\bin\wrapper.jar;bootstrap.jar;..\ext\commons-logging-1.1.3.jar;..\ext\log4j-1.2.17.jar"
Yes, it is multiple environments, and the issue was observed on all of the environments.
Regards,
Atifah
Original Message:
Sent: Jan 10, 2023 09:30 AM
From: Namish Tiwari
Subject: log4j still detected on version 9.10.1
Hi Atifah,
Could you send the location where this log4j 1.x reference is found. Did you see this inside the Enterprise Gateway .bak folders?
Send us the location and do you have multiple environments and this is observed in all the environments or not?
-Namish
Original Message:
Sent: Jan 10, 2023 12:50 AM
From: Atifah Abdul Latif
Subject: log4j still detected on version 9.10.1
Hi Supports,
Customer have updated their version to the latest one (9.10.1). Did followed the steps in this
KB
. But log4j still being detected when they run the vulnerability scan.
Appreciate any advice on this.
Thank you,
Atifah
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic