Question

is mendix lower versions are affected by the log4j

0

we are currently using the mendix 4.7.1 version does this affected by the log4j

asked 2021-12-13

Aravind Palanisamy

2 answers

Bob Boons · Answer 1 · 2021-12-13

Hi Aravind,

You should check the resource folder of your project for the log4j-core library , which contains the class that can be exploited.

Hope this helps,

Bob

Tim v Steenbergen · Answer 2 · 2021-12-13

Just to be sure, you might want to have a look at this one: https://github.com/logpresso/CVE-2021-44228-Scanner