New CVE-2021-45105 for log4j

Question

On december 19th a new vulnerability was found in log4j 2.16.0 Are there any plans to upgrade to log4j 2.17.0 as suggested by Apache? As long as this upgrrade is not implemented, I am not allowed to use SOAP UI which makes my test work much more difficult

sonya_m · Accepted Answer

Hi&nbsp;doom71, there's a fresh update on that on the SmartBear site, please refer to this page:&nbsp;https://smartbear.com/security/cve-2021-44228/&nbsp;&nbsp;

doom71 · Answer

Ah yes. Didn't know that page was available. Thanks for your quick reply&nbsp;👍

doom71 · Answer

Thank you for your reply. Very happy to be able to use SOAP UI again.

Forum Discussion

New CVE-2021-45105 for log4j

4 Replies

Related Content

Log4J vulnerability

Does SoapUI 5.6.0 has log4j vulnerability?

Log4j Vulnerability - Swagger

SoapUI 5.5.0 Log4j vulnerability

log4j security vulnerability

Recent Discussions

SOAP Request works in SoapUI, but not in C# code

How to configure Swagger in Paas to use it in Oracle APEX instance.

log4j1.x vulnerability

Soapui 5.7.1 dependency : thoughtworks:xstream:jar:1.4.20

SoapUI OSS apidocs are outdated in April 2024