Re: Cisco Unified Call Studio 12.6 log4j issue after applied the patch

kathy.yang · ‎05-22-2023

I have applied the fix for log4j patch to Cisco Unified Call Studio 12.6, but our security team still complained below war/jar files. Is there another patch to fix? thanks!

The vulnerable instances are located at...
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.debug.runtime\lib\CVP.war
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.library.common\lib\log4j-core.jar
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.library.framework\lib\log4j-core.jar
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.builder.documenter\lib\log4j-core.jar
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.extensionkit.core\lib\log4j-core.jar
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.debug.runtime\CATALINA_HOME\webapps\CVP\WEB-INF\lib\log4j-core.jar
...\CallStudio12.6\eclipse\plugins\com.audiumcorp.studio.debug.core\lib\log4j-core.jar

mschweitzer · ‎01-31-2024

Have you found a solution for this? Because we have the same issue.

Cisco Unified Call Studio 12.6 log4j issue after applied the patch

Guest portal issues after patch update.

使用CVP独立VXML服务器和Cisco Unified Call Studio 应用程序涵盖CVP自助服务模型...

Cisco Unified Computing System (UCS) - How To

Como instalar patches no Cisco ISE

Cisco Wireless Phone 800 シリーズで Call Park Reversion Timer が動作しない