2 Replies Latest reply on Jan 13, 2020 10:38 AM by Carl Walker

    WF Patch for Log4j Exploit?

    Carl Walker Novice

      Hi,

       

      Is there a patch for NVD - CVE-2019-17571 ?  Is it just a matter of repacking org.jboss.log4j.logmanager with the latest log4j?

       

      It looks like there is a ServerSocket.class packed with the module up to WF 18.

       

      Thanks,

      Carl