SAP Sourcing Versions 9, 10 and 11 (SP1 through SP17) contains Apache Log4j1.2 as part of base code. Vulnerabilities have been identified, via CVE-2021-4104, for this file and version number, but only under certain circumstances which do not apply to SAP Sourcing / CLM.
SAP Sourcing/CLM Versions 9, 10 and 11 (SP1 through SP17)
KBA , SRM-ESO-SEC , Security for SAP Sourcing & CLM , Problem
About this pageThis is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).
Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.