SAP Knowledge Base Article - Public

3132322 - CVE-2021-44228 - Diagnostics Agent impact for Log4j vulnerability

Symptom

  • Vulnerability CVE-2021-44228 for log4j
  • How does this impact the Diagnostics Agent for Solution Manager

log4j is an apache library used commonly in java applications.  This particular issue was identified in log4j2 and fixed in log4j2.15.0.

Environment

  • Diagnostics Agent
  • All operating systems

Resolution

See Also

https://logging.apache.org/log4j/2.x/security.html

https://nvd.nist.gov/vuln/detail/CVE-2021-44228

Keywords

CVE-2021-44228, log4j, Diagnostics Agent, vulnerability, apache , KBA , SV-SMG-DIA-SRV-AGT , Agent Framework , Problem

Product

SAP Business ByDesign all versions