Legacy ibi Releases and Apache Log4j 1.2 Vulnerabilities
Article ID: KB0072156
Updated On:
| Products | Versions |
|---|---|
| ibi WebFOCUS | - |
| ibi Omni | - |
| ibi FOCUS | - |
Description
TIBCO is aware of the Apache Log4j 1.2 vulnerabilities (CVE-2019-17571, CVE-2020-9488, CVE-2021-4104, CVE-2022-23302, CVE-2022-23305, and CVE-2022-23307).
TIBCO’s Security Team is actively monitoring the information coming out about the Apache Log4j vulnerabilities and our Product Security Incident Response Team (PSIRT) is actively evaluating how these may affect TIBCO products and cloud services.
The following releases of legacy ibi products are not impacted by CVE-2019-17571, CVE-2020-9488, CVE-2021-4104, CVE-2022-23302, CVE-2022-23305, or CVE-2022-23307.
TIBCO’s Security Team is actively monitoring the information coming out about the Apache Log4j vulnerabilities and our Product Security Incident Response Team (PSIRT) is actively evaluating how these may affect TIBCO products and cloud services.
The following releases of legacy ibi products are not impacted by CVE-2019-17571, CVE-2020-9488, CVE-2021-4104, CVE-2022-23302, CVE-2022-23305, or CVE-2022-23307.
- TIBCO WebFOCUS Releases 8204 and earlier
- TIBCO Data Migrator Releases 8204 and earlier
- TIBCO WebFOCUS App Studio (all releases)
- TIBCO iWay Service Manager (all releases)
- Mainframe FOCUS (all releases)
Issue/Introduction
This article describes legacy ibi product releases not impacted by Apache Log4j 1.2 vulnerabilities.
Environment
All
Additional Information
Apache Log4j Vulnerability Update
Apache Log4j 1.2 Security Vulnerabilities
Feedback
Yes
No
Powered by
