Skip to content
This repository has been archived by the owner on Feb 2, 2023. It is now read-only.

Automation Anywhere is affected by log4j2 vulnerabilities #357

Open
noloader opened this issue Dec 23, 2021 · 1 comment
Open

Automation Anywhere is affected by log4j2 vulnerabilities #357

noloader opened this issue Dec 23, 2021 · 1 comment
Assignees
@justmurphy @Lcerkov
Labels
need info This issue or pull request requires further information

Comments

@noloader
Copy link

Submission Template

Please provide the following information.

  • Vendor Name: Automation Anywhere
  • Product Name: Automation Anywhere
  • URL: https://www.automationanywhere.com/
  • Version(s) affected: All
  • Status: Affected. (The company privately claims unaffected, but advises to start Java VM with -Dlog4j2.formatMsgNoLookups=true option).
  • Update Available: No. The company has not provided public information about the vulnerability.
  • Notes: The company advises all Java VM start with the option -Dlog4j2.formatMsgNoLookups=true.
  • References: No public references are available.
  • Last Updated: DEC 22, 2021
@justmurphy justmurphy added the need info This issue or pull request requires further information label Dec 23, 2021
@justmurphy justmurphy assigned Lcerkov and unassigned LA100ti Dec 23, 2021
@justmurphy
Copy link
Collaborator

@noloader thank you for submitting this information. Wondering if there are any updates or public releases that you could point us toward, rather than the general url for the organization?

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@justmurphy justmurphy

@Lcerkov Lcerkov

Labels
need info This issue or pull request requires further information
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@noloader @justmurphy @Lcerkov @LA100ti