CVE-2021-44228 - log4j vulnerability
CVE-2021-44228 - log4j vulnerability
Seems to be present in quite a few spiderbasic libraries. Are they patched or are we vulnerable?
Re: CVE-2021-44228 - log4j vulnerability
SpiderBasic generates JavaScript.
log4j is a Java Library.
JavaScript is not Java.
log4j is a Java Library.
JavaScript is not Java.
Re: CVE-2021-44228 - log4j vulnerability
Good to know because when I search for log4j I get quite a few hits for log4j.jar and log4j.pom in the spiderbasic demos.
SpiderBasicDemo\android\apache-ant\lib
ant-apache-log4j.jar
SpiderBasicDemo\android\apache-ant\lib
ant-apache-log4j.jar
-
- Posts: 285
- Joined: Fri Sep 22, 2017 7:02 am
Re: CVE-2021-44228 - log4j vulnerability
Maybe that Java is included in the development environment? SB also uses its own web server...