cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Stay updated on what is happening on the PTC Community by subscribing to PTC Community Announcements. X

Zero Day vulnerability in Java Log4j

Go to solution
svisveswaraiya
17-Peridot
17-Peridot
‎Dec 13, 2021 05:30 AM
‎Dec 13, 2021 05:30 AM

Zero Day vulnerability in Java Log4j

Hi,

 

"Zero Day vulnerability in Java Log4j " will it give any impact in ThingWorx, is there any mitigation plan?

 

Thanks in advance,

Shalini V.

0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
SachinSharma
16-Pearl
16-Pearl
(To:RosJir)
‎Dec 15, 2021 01:28 AM
‎Dec 15, 2021 01:28 AM

@RosJir @svisveswaraiya @MikeFR 

 

The alert has been updated, refer this article for the log4j vulnerability fix in Thingworx Platform.

 

Regards,

Sachin Sharma

View solution in original post

Notify Moderator
5 REPLIES 5
SachinSharma
16-Pearl
16-Pearl
(To:svisveswaraiya)
‎Dec 13, 2021 05:44 AM
‎Dec 13, 2021 05:44 AM

@svisveswaraiya 

 

You can refer this alert posted on eSupport portal.

 

Regards,

Sachin Sharma

Notify Moderator
MikeFR
8-Gravel
8-Gravel
(To:SachinSharma)
‎Dec 14, 2021 05:21 AM
‎Dec 14, 2021 05:21 AM

Hello,

 

Thingworx isn't on that list... is there additional advice?

 

Cordially,

Mike

0 Kudos
Notify Moderator
SachinSharma
16-Pearl
16-Pearl
(To:MikeFR)
‎Dec 14, 2021 05:52 AM
‎Dec 14, 2021 05:52 AM

@MikeFR 

 

That is the only alert you need to follow. Under the listed products there is a note, I have mentioned it here for your reference.

For products not listed above, we will provide recommended actions as they become available.  Please refer back to this alert for future updates.

 

Regards,

Sachin Sharma

Notify Moderator
RosJir
2-Guest
2-Guest
(To:SachinSharma)
‎Dec 14, 2021 08:16 AM
‎Dec 14, 2021 08:16 AM

Hello, 

we are running Thingworx9 in docker container and it looks like that one part of Thingworx is using affected libraries.

TA_9407455_0-1639487659254.png

Regards,

Rostislav Jirásek

0 Kudos
Notify Moderator
SachinSharma
16-Pearl
16-Pearl
(To:RosJir)
‎Dec 15, 2021 01:28 AM
‎Dec 15, 2021 01:28 AM

@RosJir @svisveswaraiya @MikeFR 

 

The alert has been updated, refer this article for the log4j vulnerability fix in Thingworx Platform.

 

Regards,

Sachin Sharma

Notify Moderator
Top Tags