Forum Discussion

m4riannelee's avatar
m4riannelee
New Contributor
4 years ago

What is Smartbear's response to CVE-2021-44228 log4j vulnerability for Zephyr Squad?

What is Smartbear's response to CVE-2021-44228 log4j vulnerability for Zephyr Squad (on Jira server)? Is Zephyr Squad impacted? If so, how can this be mitigated and is there a fix?  
  • sanjeevpande's avatar
    4 years ago

    Hello m4riannelee ,

     

    Zephyr Squad has released a new version for Cloud and Server/DC apps with the fixes which are as follows:

    Zephyr Squad Cloud: version 8.0.1-hf4

    Zephyr Squad Server/DC: 

    • Jira 8.x
      • version 6.2.6
    • Jira 7.x
      • version 4.8.5

    Capture for Jira:

    • Jira 8.x
      • version 3.1.1
    • Jira 7.x
      • version 2.9.22

     

    We request you to updgrade your apps to these versions so that the log4j2 vulnerability is mitigated.

     

    Thank you.

     

    Regards,

    Sanjeev Pande