ACR

 View Only
Expand all | Collapse all

Does the Apache Log4j CVE-2021-44228 vulnerability have any impact on Infogix ACR Summary, Detail or Transmatch product versions ?

  • 1.  Does the Apache Log4j CVE-2021-44228 vulnerability have any impact on Infogix ACR Summary, Detail or Transmatch product versions ?

    Employee
    Posted 12-14-2021 04:19

    We have been approached by several ACR customers including Westpac for a response on the recent Apache Log4j CVE-2021-44228 vulnerability.

    I have already reviewed the following post regarding Data360 Analyze: https://support.infogix.com/hc/en-us/articles/4412637253267-Data360-Analyze-Log4j-Vulnerability-CVE-2021-44228

    Can you please confirm whether this vulnerability has any impact on the ACR family of products, including ACR/Summary/Detail/Transmatch for z/OS, Unix or Linux.

    Thank you.

    Mark Brooks

    Spectrum Software



  • 2.  RE: Does the Apache Log4j CVE-2021-44228 vulnerability have any impact on Infogix ACR Summary, Detail or Transmatch product versions ?

    Employee
    Posted 12-14-2021 06:34

    Hi Mark,

    ACR utilizes Cobol, not Java.

    As a result, the "CVE-2021-44228" vulnerability will have no impact on the applications mentioned above.

    Matthew Kennedy