Latest revision as of 19:22, 17 January 2022

Other languages:

Security Announces

The following vulnerabilities where addressed by TaticView security team:

CVE-2021-44832: Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration.
CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation
CVE-2021-45046: Apache Log4j2 Thread Context Lookup Pattern vulnerable to remote code execution in certain non-default configurations

Our security team quickly applied the corrections to our servers, and all operations are normal

We released a update to TVCli addressing the the problem.

TVCli Version < 1.3.0 are vulnerable.

You should upgrade to new version, as soon as possible.

Revision as of 20:09, 3 January 2022 (view source) FuzzyBot (talk \| contribs) (Updating to match new version of source page) ← Older edit		Latest revision as of 19:22, 17 January 2022 (view source) FuzzyBot (talk \| contribs) (Updating to match new version of source page)
Line 22:		Line 22:
	'''TVCli Version < 1.3.0 are vulnerable.'''		'''TVCli Version < 1.3.0 are vulnerable.'''

−	You should [[~~Automate_Update_data~~\|upgrade]] to new version as as possible.	+	You should [[TVCli Download\|upgrade]] to new version, as soon as possible.