cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
626
Views
10
Helpful
1
Replies

Cisco CUBE and Log4j Vulnerability

mj3919
Level 1
Level 1

Does anyone know if the CUBE (Cisco Unified Border Element) is impacted by the Log4j vulnerability (CVE-2021-44228)? It is not listed anywhere on this post - https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd. Thanks in advance. 

1 Reply 1

Jaime Valencia
Cisco Employee
Cisco Employee

This advisory only lists Cisco products and services that are known to include the impacted software component and thus may be vulnerable. Products and services that do not contain the impacted software component are not vulnerable and therefore are not listed in this advisory. Any Cisco product or service that is not explicitly listed in the Affected Products section of this advisory is not affected by the vulnerability or vulnerabilities described. Because this is an ongoing investigation, be aware that products that are currently considered not vulnerable may subsequently be considered vulnerable as additional information becomes available.

HTH

java

if this helps, please rate