Does vulnerability CVE-2021-44228 in Apache Log4j2 affect MarkView
Does vulnerability CVE-2021-44228 in Apache Log4j2 affect MarkView?
The CVE-2021-44228 vulnerability is not applicable to MarkView, as it applies to log4j2, and MarkView utilizes log4j version 1.
There is a similar vulnerability also identified in log4j version 1: CVE-2021-4104
However, it affects only applications that use JMSAppender. MarkView is not impacted by this, as it does not use the mentioned JMSAppender.
Kofax Analytics for MarkView (KAMV) is also not impacted.
Any Kofax products that might be impacted by the Apache Log4j2 vulnerability will be listed here:
Please do monitor that article for any future updates.
Non Kofax Applicaton Server Information:
Web Logic: Please refer to Oracle Support: https://support.oracle.com/
Wildfly: Please refer to WildFly specific notes for updates on that application server: WildFlyAS
Level of Complexity
MarkView for Oracle