This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

A new Flexera Community experience is coming on November 18th, click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Log4j vulnerability on FNMEA Agent

Jump to solution
Rince_Antony
By
Level 3

Hi All,

We can see log4j-1.2.17.jar being used by FNMEA Agent 5.6.0.0. Is there a version of the Flexnet Manager for Engineering Applications agent that uses the latest Log4j?

If not, what is the best option to remediate the Log4j vulnerability? Appreciate any help!

‎Dec 01, 2022 07:33 AM

(1) Solution

Jump to solution
tschaus
By Moderator Moderator
Moderator

@Rince_Antony The latest FNMEA Agent is v.5.10. We actually adressed the Log4j vulnerability issue in FNMEA Agent v. 5.9. Details of the new FNMEA releases can be found here: https://docs.flexera.com/?product=FlexNet%20Manager%20for%20Engineering%20Applications

View solution in original post

‎Dec 01, 2022 08:37 AM

(3) Replies

Jump to solution
tschaus
By Moderator Moderator
Moderator

@Rince_Antony The latest FNMEA Agent is v.5.10. We actually adressed the Log4j vulnerability issue in FNMEA Agent v. 5.9. Details of the new FNMEA releases can be found here: https://docs.flexera.com/?product=FlexNet%20Manager%20for%20Engineering%20Applications

‎Dec 01, 2022 08:37 AM

Jump to solution
Rince_Antony
By
Level 3
In response to tschaus

@tschaus Thanks for the prompt response! Appreciate the same.

I tried to open the link to the release notes for FNMEA Agent 5.10 and it gives me a 404 error. The link is below for your reference. We will try to upgrade the agent 5.10. Thank you!

https://docs.flexera.com/fnmea/2022r1/pdf/FlexNetAgent_510_Release_Notes.pdf

‎Dec 01, 2022 08:59 AM