Solved: Log4J vulnerability - SmartBear Community

Choose a Product Community

AlertSite

AQTime Pro

BitBar

Collaborator

CrossBrowserTesting

Cucumber Open Source

CucumberStudio

LoadComplete

LoadNinja

QAComplete

ReadyAPI

SoapUI Open Source

Swagger Open Source

SwaggerHub

Swagger Inspector

TestComplete

TestLeft

Zephyr Scale

Zephyr Squad

Zephyr Enterprise

Resources

Ask a Question

Log In

Docs
Academy

Hello SmartBear,

With recent news about Log4J vulnerability. Could you let us know if there are impacts on TestComplete tool Version 14.xx

Source : https://thehackernews.com/2021/12/extremely-critical-log4j-vulnerability.html

References:

https://www.wired.com/story/log4j-flaw-hacking-internet/

https://www.zdnet.com/article/security-warning-new-zero-day-in-the-log4j-java-library-is-already-bei...

https://arstechnica.com/information-technology/2021/12/the-critical-log4shell-zero-day-affects-a-who...

https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/apache-releases-log4j-version-2150-addr...

https://www.randori.com/blog/cve-2021-44228/

3 REPLIES 3

I have the same question.

Let's wait for the answer.

Hello,

TestComplete/TestExecute/TestLeft are not affected anyhow, since these products do not use Log4J at all.

Regards,
Yuriy Peshekhonov
Customer Care Engineer

Same query around ReadyAPI and what version we'll need to upgrade to or remediation for existing versions with the use of log4j files.