Hello
One of our customers is using atlassian confluence server. I have read the article https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html
In "C:\Program Files\Atlassian\Confluence\confluence\WEB-INF\classes\log4j.properties" I cannot find a line with "org.apache.log4j.net.JMSAppender".
But there are plenty of lines beginning with log4j.appender. Is this configuration affected from the vulnerability as well?
Just want to be sure. Thank you very much for your help!
Greetings
Andreas
Any advices?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.