Apache Log4j

Updates for recent Log4J security vulnerabilities

There were number of releases over the months of December and January to fix the known Log4J vulnerabilities. The following Geneos components and integrations were affected by vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832. We can also confirm that no other Geneos components are affected.

  • Active Console
  • Web Dashboard
  • Terracotta Messaging integration
  • VMware integration

We recommend upgrading to the latest version Geneos 5.12.0 or newer. If you are unable to upgrade, please see the mitigation and workaround information in Vulnerability in Apache Log4j.