You are not logged in.
- Topics: Active | Unanswered
Announcement
Téléchargez la dernière version stable de GLPI
- Et vous, que pouvez vous faire pour le projet GLPI ? :
Contribuer
Download last stable version of GLPI - What can you do for GLPI ? : Contribute
Download last stable version of GLPI - What can you do for GLPI ? : Contribute
#1 2021-12-14 16:16:08
- PhilBaiko
- Member
- Registered: 2021-12-14
- Posts: 1
Vulnerability Log4Shell CVE-2021-44228
Hello,
is GLPI Vulnerable to Log4Shell CVE-2021-44228?
Thanks,
Philippe
Offline
#2 2021-12-14 21:02:26
- cconard96
- Moderator
- Registered: 2018-07-31
- Posts: 2,412
- Website
Re: Vulnerability Log4Shell CVE-2021-44228
GLPI core is not vulnerable. GLPI is written in PHP and JavaScript, not Java which is what the Log4J library is written in/for.
That isn't to say none of the plugins don't somehow use it or interact with a vulnerable application though.
GLPI Collaborator and Plugin Developer.
My non-English comments are automated translations. Sorry for any confusion that causes.
Mes commentaires non anglais sont des traductions automatiques. Désolé pour toute confusion qui cause.
Mis comentarios que no están en inglés son traducciones automáticas. Perdón por cualquier confusión que cause.
Offline