3130906 - CVE-2021-44228 - Log4j vulnerability - no impact on SAP IQ

Symptom

How does vulnerabilities below impact SAP IQ 16.x & SAP HANA Dynamic Tiering ?

Vulnerability CVE-2019-17571 for log4j
Vulnerability CVE-2021-44228 for log4j
Vulnerability CVE-2021-4104 for log4j
Vulnerability CVE-2021-44832 for log4j
Vulnerability CVE-2021-45105 for log4j
Vulnerability CVE-2021-45105 for log4j
Vulnerability CVE-2022-23302 for log4j
Vulnerability CVE-2022-23305 for log4j
Vulnerability CVE-2022-23307 for log4j
Vulnerability CVE-2014-0114
Vulnerability CVE-2019-10086
Vulnerability CVE-2020-9488
Vulnerability CVE-2021-33813

The log4j is an apache library used commonly in java applications.
This particular issue was identified in log4j2 and fixed in log4j 2.15.0.

Environment

SAP IQ 16.0 & SAP IQ 16.1
SAP HANA Dynamic Tiering
All Operating Systems

Product

SAP IQ 16.0 ; SAP IQ 16.1

Keywords

CVE-2019-17571, CVE-2021-44228, CVE-2021-4104 , CVE-2021-45046 , CVE-2021-45105 , CVE-2021-44832 , CVE-2022-23302 , CVE-2022-23305 , CVE-2022-23307 , SAP IQ , 16.0 , 16.1 , log4j , vulnerability , JNDI , KBA , BC-SYB-IQ , Sybase IQ , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.