Log4j vulnerability and Media Cybernetics products
Media Cybernetics was made aware of an exploit in the Java logging library,
Log4j, which impacts versions 2.14.1 and lower. This vulnerability allows
attackers, who can control log messages or parameters, to execute arbitrary
code. Full details can be found in the public advisory ( https://nvd.nist.gov/vuln/detail/CVE-2021-44228
)
After a thorough investigation of our products, this vulnerability was
identified in the Network License Server used by Image-Pro 10.0.0 and above.
Specifically, the License Administration tool, hosted in Apache Tomcat, used
versions of Log4j that were affected by this vulnerability.
Please
use the following link to download an updated version of the Image-Pro Network
License Server, version 10.0.12, that resolves this issue.
http://bit.ly/3btOozl
Categories
- All Categories
- 961 Image-Pro v9 and higher
- 9 Image-Pro FAQs
- 18 Image-Pro Download & Install
- 448 Image-Pro General Discussions
- 486 Image-Pro Automation (Macros, Apps, Reports)
- 20 AutoQuant Deconvolution
- 2 AutoQuant Download & Install
- 18 AutoQuant General Discussions
- 195 Image-Pro Plus v7 and lower
- 3 Image-Pro Plus Download & Install
- 106 Image-Pro Plus General Discussions
- 86 Image-Pro Plus Automation with Macros
- 19 Legacy Products
- 16 Image-Pro Premier 3D General Discussions
- 26 Image-Pro Insight General Discussions