Ask a Question
Log In / Sign Up
Resources
Ask a Question
Log In Sign Up

ready-api-soapui-testrunner

SOLVED
Solved
Anc0r
Visitor
‎01-05-2022 05:30 AM
‎01-05-2022 05:30 AM

ready-api-soapui-testrunner

Hi everyone,

i don't know if this belongs here, but it's worth a try:

 

we use the ready-api-soapui-testrunner:3.20.0 from hub.docker.com.

During our security scans (trivy v0.22.0) we discovered that the image contains a critical error. The CVE-2019-17571 concerns log4j 1.12.7.

 

CVE-2019-17571.png

 

Are there any plans to fix it?

 

greetings

0 Kudos
1 REPLY 1
TSanchez_1
Moderator
Moderator
‎01-14-2022 08:14 AM
‎01-14-2022 08:14 AM

Hello, unfortunately our license vendor users log4J 1.12.7 which is why you are seeing the message. We have updated log4j in ReadyAPI but still working with our license vendor to update log4j on their end. Let me know if you have further concerns or questions and I will keep you posted.

Temil Sanchez
Ready API Product Owner
Subscribe
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: