My Oracle Support Banner

NMS Workaround and Fix/Patch List to Log4j Vulnerability (CVE-2021-44228, CVE-2021-45046) (Doc ID 2827974.1)

Last updated on JANUARY 14, 2022

Applies to:

Oracle Utilities Network Management System - Version 2.3.0.1.0 to 2.5.0.1.0 [Release 2.3 to 2.5]
Oracle Network Management for Utilities - DMS - Version 2.3.0.1.0 to 2.5.0.1.0 [Release 2.3 to 2.5]
Information in this document applies to any platform.

Goal

There is a security flaw identified with log4j versions older than 2.16.

Is there a way to remedy this vulnerability until NMS is updated?


 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
 See Also
 Workaround to disable the vulnerability
 Verification of JndiLookup class removal
 Product Patches
 Fix Description
 Migration
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.