-
Title
Is KACE Cloud affected by CVE-2021-44228? -
Description
This article addresses the status for KACE Cloud in regards to the Apache Log4j2 Zero-Day exploit identified under CVE-2021-44228. For more details regarding the Apache Log4j2 vulnerability, refer to Fixed in Log4j 2.15.0 section of the Apache Log4j Security Vulnerabilities page.
-
Cause
An exploit for a critical zero-day vulnerability (CVE-2021-44228) affecting Apache Log4j2 known as Log4Shell was disclosed on December 9, 2021.
According to Apache Log4j 2 The Log4j team has been made aware of a security vulnerability, CVE-2021-44228, that has been addressed in Log4j 2.15.0.
-
Resolution
It has been confirmed that the Apache Log4j2 Zero-Day exploit identified by CVE-2021-44228 does not impact KACE Cloud.
For any questions or assistance on this topic please contact our Tech Support.