Kurian Benoy
Reputation: 989
Is formsflow.ai being affected by log4shell vulnerability?
Formsflow.ai is using Camunda, which is a java based application. So will formsflow.ai be affected by the latest log4shell vulnerability which is a very high risk vulnerability with CVE-2021-44228.
Upvotes: 2
Views: 64
Answers (1)
John
Reputation: 708
No, formsflow.ai is not using log4j-core in the dependency stack. It uses only the following dependencies
BOOT-INF/lib/log4j-to-slf4j-2.13.3.jar
BOOT-INF/lib/log4j-api-2.13.3.jar
Upvotes: 2
Related Questions
- CVE-2021-44228 and log4j 1.2.17
- Was slf4j affected with vulnerability issue in log4j
- Does Groovy have log4j vulnerability?
- Python logging module & indirect log4j vulnerability exposure?
- Does the Log4j security violation vulnerability affect log4net?
- Is Meshlab affected by the Log4j vulnerability
- Is log4javascript vulnerable to Apache Log4j (Java logging library) remote code execution CVE-2021-44228?
- Does log4r also possible security vulnerabilities like that if log4j
- Is WildFly affected by the log4j 2 vulnerability CVE-2021-44228?
- is there any cause for concern using log4net with .NET 3.5 and later