|
|
The last few days there is a lot of noise about the log4j vulnerability. Most of the messages are about Apache, but https://github.com/NCSC-NL/log4shell lists a lot of other software. CommuniGate Pro is not in this list, but I found the following file on our system, apparently from the CommuniGate Pro installation:
/opt/CommuniGate/WebSkins/Samoware/log4javascript.js
My question is whether this indicates a vulnerability of our system? If so, are there instructions to fix the problem and also CommuniGate Pro should be added to the NCSC list.
Best regards,
Fred.Zwarts.
|
|