Forum Discussion

New Member

2 months ago

log4j1.x vulnerability

Hello team, We use SOAP UI 5.1.13 version , it comes with log4j 1.x version, As this version of log4j is EOL can you please confirm what is the remediation procedure we need to follow. Thanks,

Humashankar

Champion Level 0

2 months ago

Hi ruchisingh

You are right, it is known to be vulnerable.

You can try the recommended option which is to upgrade SOAP UI to a version that uses Log4j 2.x or later. Newer versions of SoapUI are not vulnerable to the Log4j 1.x Exploit (CVE-2021-44228).

Hope this helps - Happy to help further!!
Thank you very much and have a great one!
Warm regards

Recent Discussions

Using SSL server certificate with only public key
24 hours agofrancosy
SoapUi gui with visual artifacts SoapUi unusable
Solved
5 days agoSysDoc
OpenJDK Multiple Vulnerabilities
Solved
5 days agooneagh
Pre-Request Script
6 days agojschwartz
MTOM Soap12 Send Request got 500 issue in C# window application
6 days agosamsudeen04

Forum Discussion

log4j1.x vulnerability

Related Content

Log4J vulnerability

Does SoapUI 5.6.0 has log4j vulnerability?

SoapUI 5.5.0 Log4j vulnerability

Log4j Vulnerability - Swagger

OpenJDK Multiple Vulnerabilities

Recent Discussions

Using SSL server certificate with only public key

SoapUi gui with visual artifacts SoapUi unusable

OpenJDK Multiple Vulnerabilities

Pre-Request Script

MTOM Soap12 Send Request got 500 issue in C# window application