This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
riazahamed
Level 4
‎Dec 14, 2021 09:54 PM

SAP BusinessObjects BI 4.x : CVE-2021-44228

Is SAP BusinessObjects BI 4.x (4.1) impacted by apache log4j? If so, please release advisories for it

0 Kudos

This thread has been automatically locked due to inactivity.

To continue the discussion, please start a new thread.
2 Replies
raslam
Level 7 Flexeran
Level 7 Flexeran
‎Dec 15, 2021 04:33 AM

The SAP site is down now, and the Secunia Research team is waiting for this to function again. We will get back to you ASAP.

https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021

0 Kudos
raslam
Level 7 Flexeran
Level 7 Flexeran
‎Dec 15, 2021 04:52 AM

We can't handle the CVE-20211-44228 for SAP products as they have "hidden" their statement behind a login. We cannot tell what products are affected or what fixes they issued. If you are paid customer and have access to the below URL and pdf,  please share with us so that we can further look into this. 

https://support.sap.com/content/dam/support/en_us/library/ssp/my-support/trust-center/sap-tc-01-5025.pdf

0 Kudos