Murugan
Reputation: 51
Is Archimate tool : Archi - Log4j Vulnerable
Whether Archimate tool : Archi is vulnerable to the log4j [CVE-2021-44228] impact? Is it using log4j first of all.
Upvotes: -1
Views: 240
Answers (1)
Simulant
Reputation: 20132
No, the Archi Java Archimate Modeller does not use log4j and is therefore also not vulnerable to this issue.
See the answers to the question in the Forum: https://github.com/archimatetool/archi/issues/795#issuecomment-996478526 https://forum.archimatetool.com/index.php?topic=1155.msg6168#msg6168
You can also search the code and will not find anything.
https://github.com/archimatetool/archi/search?q=log4j
Upvotes: 1
Related Questions
- CVE-2021-44228 and log4j 1.2.17
- Log4j vulnerability - Is Log4j 1.2.17 vulnerable (was unable to find any JNDI code in source)?
- Was slf4j affected with vulnerability issue in log4j
- Log4j 1: How to mitigate the vulnerability in Log4j without updating version to 2.15.0
- Does Groovy have log4j vulnerability?
- How do I fix the log4j vulnerability (Windows)?
- org.slf4j:log4j-over-slf4j:jar:1.7.21:compile vulnerability
- How to search for log4j vulnerability?
- Is log4javascript vulnerable to Apache Log4j (Java logging library) remote code execution CVE-2021-44228?
- Doubts about mitigations to Apache's Log4j library vulnerability