Log4j Vulnerability
PostPosted:Thu Dec 16, 2021 2:10 pm
Hi,
is the CE Version 6.3.10 vulnerable to Log4j ??
is the CE Version 6.3.10 vulnerable to Log4j ??
Most or all version 6.3.x are not vulnerable to this bug because OpenKM it uses logback. If you have in your tomcat folder a file named logback.xml should not be worried about it.
However upgrade to the latest version is a good practice.