Mitigation of Log4j vulnerability CVE-2021-45046 | Software- und Organisations-Service

News Date and Time

Dec 15 2021 10:00

Log4j vulnerability CVE-2021-45046

The vulnerability is considered a medium risk for JobScheduler users. No active exploits are known.

Find instructions how to mitigate the Log4j vulnerability from

JOC-1186: Update log4j2 2.15.0 to 2.16.0 due to 3rd party vulnerability issue in log4j2 2.15.0 (CVE-2021-45046)

Find instructions about the previous Log4j vulnerability CVE-2021-44288 from:

JOC-1184: Update log4j2 2.14.1 to 2.15.0 due to 3rd party vulnerability issue in log4j2 2.14.1 (CVE-2021-44228)

Patch instructions are available, SOS ships maintenance releases before Dec 23rd.