![]() Log4j is a component that is included within many Java-based applications in order to log application activity and errors. What are the Log4j exploits (including Log4Shell)? We strongly urge users on FileMaker Server 17 or lower to take mitigation measures (outlined below in “How do I fix it?”), and to upgrade to FileMaker Server 19 as soon as possible. You should still prioritize upgrading to FileMaker 19, as all other versions are EOL and no longer supported.įileMaker Server 16 and 17 do use Log4j 1.2.15 which has a number of other vulnerabilities, including similarly threatening Remote Code Execution, and is no longer maintained. They have also confirmed that FileMaker Cloud and FileMaker Server 16 and 17 are not susceptible to these specific exploits. Claris Official responseĬlaris has announced that FileMaker Cloud, FileMaker Server 18, and FileMaker Server 19 do not use Log4j2 and are NOT vulnerable to Log4Shell (CVE-2021–44228), or to the subsequent CVE-2021–45046. ![]() This blog post is based on work from many members of the community, please see the Thanks section for details. Can you fix Log4Shell on your FileMaker Server? Do you even need to? This post attempts to summarize the latest information available about mitigating the impact of the Log4j exploit on FileMaker Server. ![]() You may have seen recent news, or received customer inquiries, about a major security vulnerability going around the internet.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |