SAP Knowledge Base Article - Preview

3131588 - CVE-2021-44228 - UWL (Universal Worklist) Components' impact for Log4j vulnerability

Symptom

You are curious whether your SAP NetWeaver Java UWL (Universal Worklist) application is affected by ZeroDay security vulnerability in log4j library mentioned here.

  • Vulnerability CVE-2021-44228 for log4j
  • How does this impact SAP Netweaver Application Server for Java UWL Application Components

log4j is an apache library used commonly in java applications.  This particular issue was identified in log4j2 and fixed in log4j2.15.0


Read more...

Product

SAP NetWeaver Application Server for Java 7.1 ; SAP NetWeaver Application Server for Java 7.2 ; SAP enhancement package 1 for SAP NetWeaver Application Server for Java 7.1

Keywords

uwl, universal worklist, Zero Day, security vulnerability, org.apache.naming.factory.BeanFactory, BeanFactory, CVE-2021-44228, Logger.class, Log4J, Log4j2 , KBA , EP-BC-UWL , Universal Worklist , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.