Some users may experience issues accessing the case portal. For more information, please click here.

This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Known Issue: Cognos Analytics is potentially vulnerable to CVE-2021-44228 (Apache Log4j 2 "Log4Shell") (IOJ-2236946)

Known Issue: Cognos Analytics is potentially vulnerable to CVE-2021-44228 (Apache Log4j 2 "Log4Shell") (IOJ-2236946)

A critical vulnerability in Apache Log4j 2 impacting versions from 2.0-beta9 through 2.12.1 and 2.13.0 through 2.14.1 has been publicly disclosed. The vulnerability has been assigned the identifier CVE-2021-44228.

IBM’s Cognos is included in Flexera Analytics, and is used as a reporting engine for FlexNet Manager Suite and FlexNet Manager for Engineering Applications. Cognos has been identified as potentially being affected by CVE-2021-44228.

See the following article for additional details about this known issue: Flexera Analytics (Cognos) mitigation for Apache Log4j 2 vulnerability CVE-2021-44228.

 

Fix status

This issue has been fixed in the following FlexNet Manager Suite release: 2021 R1.4 / Mar 2022 (Cloud)

Other information

Affected components: Analytics (Cognos), Security

Master issue ID: IOJ-2236946

Also known as: FNML-74906

Labels (1)
Labels:
Was this article helpful? Yes No
0 420

Tip: If you have been impacted by this issue, please click the KUDOS button above. This helps to track the relative significance and importance of issues. Clicking on an option against "Was this article helpful?" also helps assess and improve the usefulness of content.

No ratings
Version history
Last update:
‎Jun 12, 2022 03:51 AM
Updated by:
Community Manager Community Manager