12-14-2021 12:23 AM
Hi All,
Regarding CSCwa46963 mentioned the Log4j vulnerability with FTD managed by FDM.
I have a question if FTD managed by FMC only, it can be included to this?
Thanks in advance.
Nong.
12-15-2021 12:43 AM
Its classified as "not vulnerable" if managed by FMC:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd
Vulnerable:
Not Vulnerable:
12-16-2021 09:46 AM
@TheUser27Right, but FDM is dormant in the FTD, not gone. I guess this boils down to how is the vulnerability affecting the devices managed by FDM? If it's invoked specifically through the web server servicing the firewall, then I would safely assume that devices managed from FMC won't be affected due to the web server being "turned off" on the FTD? Can someone at Cisco confirm, please?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide