You are not logged in.
Hello,
is GLPI Vulnerable to Log4Shell CVE-2021-44228?
Thanks,
Philippe
Offline
GLPI core is not vulnerable. GLPI is written in PHP and JavaScript, not Java which is what the Log4J library is written in/for.
That isn't to say none of the plugins don't somehow use it or interact with a vulnerable application though.
GLPI Collaborator and Plugin Developer.
My non-English comments are automated translations. Sorry for any confusion that causes.
Mes commentaires non anglais sont des traductions automatiques. Désolé pour toute confusion qui cause.
Mis comentarios que no están en inglés son traducciones automáticas. Perdón por cualquier confusión que cause.
Offline