T10:38:46 INFO process_jar: Found a VULNERABLE FILE: /opt/vmware/lib64/log4j-core-2.13.0.jar T10:38:20 INFO main: vCenter type: Version: 7.0 Build: 18455184 Deployment type: embedded Gateway: False VCHA: False Windows: False Ī service stop and start is required to complete this operation. Run script python vc_log4j_mitigator.py # python vc_log4j_mitigator.py Shell access is granted to # cd # vim vc_log4j_mitigator.py Run ssh and create script via vim Connected to service It is neccesary to fix vCenter Server 7.0.x, vCenter 6.7.x & vCenter 6.5.x.įastest and recommended is workaround with KB 87081 script ( vc_log4j_mitigator.py). Apache Log4j open source component has security bug (CVE-2021-44228 – VMSA-2021-0028).
0 Comments
Leave a Reply. |