Does SoapUI 5.6.0 has log4j vulnerability?
I have installed SoapUI 5.6.0 and it does have "log4j-1.2.14.jar" file present at SmartBear\SoapUI-5.6.0\lib location.
Does this file have vulnerability? Log4J file < 2.15 is vulnerable. So, Can you share if there is any patch or fix for the same or if there is any new version available to install which does not have this vulnerability?
We were said that there will be an updated release of SoapUI OS in the coming days. Please see this pull request https://github.com/SmartBear/soapui/tree/release-5.6.1 for more details.