log4j 보안취약점 스캔을 통해 확인된 결과입니다.
조치필요여부 확인부탁드립니다.
> log4j2-scan.exe --scan-log4j1 ./eXperDB-Monitoring
Logpresso CVE-2021-44228 Vulnerability Scanner 2.7.1 (2022-01-02)
Scanning directory: ./eXperDB-Monitoring
[*] Found CVE-2021-44832 (log4j 2.x) vulnerability in C:\imsi\eXperDB-Monitoring\eXperDB_Server\eXperDB_Monitoring_Agent\lib\log4j-core-2.17.0.jar, log4j 2.17.0
[*] Found CVE-2021-44832 (log4j 2.x) vulnerability in C:\imsi\eXperDB-Monitoring\eXperDB_Server\eXperDB_Monitoring_Agent_Manager\lib\log4j-core-2.17.0.jar, log4j 2.17.0
Describe the bug
log4j 보안취약점 스캔을 통해 확인된 결과입니다.
조치필요여부 확인부탁드립니다.
보안취약점 확인
https://github.com/logpresso/CVE-2021-44228-Scanner
보안취약점 조치방법
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=36397
확인내역