We have developed website in Umbraco v6.1.6 (Assembly version: 1.0.5021.24867). I came to notice that some security issues in Log4j . Old umbraco version using log4.net library, is there any security issues for log4.net? Any patches available ?
Umbraco recently made a statement public that no Umbraco products or services are vulnerable to the Log4J exploit in question, nor have any similar or relevant exploits been found in Log4Net so far!
Log4j Security Vulnerabilities
Hi ,
We have developed website in Umbraco v6.1.6 (Assembly version: 1.0.5021.24867). I came to notice that some security issues in Log4j . Old umbraco version using log4.net library, is there any security issues for log4.net? Any patches available ?
Hi Subhakar,
Umbraco recently made a statement public that no Umbraco products or services are vulnerable to the Log4J exploit in question, nor have any similar or relevant exploits been found in Log4Net so far!
For more details be sure to read the following security advisory: https://umbraco.com/blog/security-advisory-december-15-2021-umbraco-cms-and-cloud-not-affected-by-cve-2021-44228-log4j-rce-0-day-mitigation/
Kind regards,
Corné Hoskam
is working on a reply...