ADMP-最新的Log4j vulnerabilities(CVE-2021 44228 & CVE-2021-45046) workaround

ADMP-最新的Log4j vulnerabilities(CVE-2021 44228 & CVE-2021-45046) workaround

In ADManager Plus the affected log4j version is used is in the bundled dependency, Please find the below precautionary measures against the latest log4j vulnerability (CVE-2021 44228 & CVE-2021-45046). There is no conclusive evidence of the exploit in ADManager Plus yet. We strongly recommend all our customers to follow the steps given below as a precautionary measure.

ADManager Plus Precautionary steps to take against this vulnerability  

(NOTE: If you do not have the ES folder inside the ADManager Plus Installation folder, then your ADManager Plus instance is not vulnerable. And the below steps need not be followed.)

1. Stop ADManager Plus

2. Delete the following files after taking backup

a. From ADManager Plus\ES\lib folder
i. log4j-1.2-api-2.11.1.jar
       ii. log4j-api-2.11.1.jar
      iii. log4j-core-2.11.1.jar

b. From ADManager Plus\ES\plugins\search-guard-6
i. log4j-slf4j-impl-2.11.1.jar

3. Download the zip and extract the following files (Zip File Link: https://downloads.zohocorp.com/ADManager_Plus/xJLJRv0OQDiTZwA/log4j-2.16.0.zip )

a. Place following extracted files in ADManager Plus\ES\lib
i. log4j-1.2-api-2.16.0.jar
       ii. log4j-api-2.16.0.jar
      iii. log4j-core-2.16.0.jar

b. Place following extracted files in ADManager Plus\ES\plugins\search-guard-6
i. log4j-slf4j-impl-2.16.0.jar

4.Start the ADManager Plus 

    • Related Articles

    • ELA-最新的Log4j vulnerabilities(CVE-2021 44228 & CVE-2021-45046) workaround

      Please find the steps to mitigate the vulnerabilities CVE- 2021-44228 and CVE-2021-45046 on EventLog Analyzer. 1. Download/unzip the jar files from the below patch, ...

    • EventLog Analyzer-扫描出CVE-2021-44832漏洞如何处理(已是最新build12214)?

      请先确认产品已经升级到最新的Build12214了! 升级产品到最新的build12214后,CVE-2021-44228,CVE-2021-45046和CVE-2021-45105漏洞已经分别修复。 但是如果此时还是扫描出CVE-2021-44832漏洞,请查看以下内容: Four high severity vulnerabilities, (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832), ...

    • AD部分产品受Apache log4j2(CVE-2021-44228)漏洞影响(附workaround)

      经与研发团队确认,部分AD产品受Apache log4j2(CVE-2021-44228)漏洞影响,提供的workaround如下: EventLog Analyzer: We have replaced the %m with %m{nolookups} in the log4j2.properties of ES. 1.Download the log4j2.properties file from the below link.       ...

    • ADA受CVE-2023-49331影响吗?

      经过和研发团队确认,ADA的8003版本修复了此漏洞.如果在使用低于8003版本,需要升级至8003或以上.如果已经使用8003或以上版本,则不会受此漏洞影响. CVE网站信息:https://www.cve.org/CVERecord?id=CVE-2023-49331

    • 【APM】Oracle Alert Log 查询语句

      对于 Oracle 12C 以下版本获取Oracle Alert Log的查询语句是: SELECT decode(MESSAGE_LEVEL,1,'CRITICAL',2,'SEVERE',8,'IMPORTANT',16,'NORMAL',MESSAGE_LEVEL) as MESSAGE_LEVEL,RECORD_ID,ORIGINATING_TIMESTAMP,HOST_ADDRESS,MESSAGE_TEXT FROM v$appman_alertlog_ext WHERE TRIM ...