Our Toad Edge DEV team analyzed this issue and here are the results of their analysis:
ToadEdge is not impacted by security issue CVE-2021-44228 as it does not use log4j2. But ToadEdge is impacted by CVE-2021-4104 as it uses log4j1 which is less vulnerable. CVE-2021-4104 has minimal impacts on ToadEdge and here is the plan in resolving this vulnerability:
WORKAROUND:
The Toad Edge DEV team has created a workaround for this vulnerability (CVE-2021-4104) and the word document is attached below.
RESOLUTION:
The Toad Edge DEV team is going to implement a fix for CVE-2021-4104 as part of Jan 2022 Toad Edge release
If you have any other questions about this topic, please open a ticket with Quest support.
© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center