As you probably know at the end of the previous week a huge log4j vulnerability (CVE-2021-44228) has been discovered.
HCL has published a technote about it where it's publishing a dedicated page for every collaboration products after vulnerability test has been made, and the situation is not so bad.
Please go to the technote page , follow the link to your products , and see if any mitigation has been required.
The day after my blogpost another cve was redacted , CVE-2021-45046: please check the HCL technote again to see if something relevant was changed
ReplyDelete