Join us for SoftSummit 2023. The 20th anniversary of the industry leading software monetization conference. April 18 and 20. Register Now
This article is an extension of the Log4j security advisory and serves to consolidate impact and mitigation details of related Log4j vulnerabilities with regards to FlexNet Embedded.
Yes (2020.10 or later)
Hi @cvirata is there any update on https://www.cvedetails.com/cve/CVE-2022-23307/ since there are components still containing log4j v1.2.17?
Hello @oallabauer - To help address Log4J vulnerability concerns, the plan is to migrate the FlexNet Embedded Local License Server from Log4J to Logback 1.2.9 as part of the FlexNet Embedded 2022.02 release.