Skip to main content
Start a Conversation

Solved!

Go to Solution

Agnes Horvath

1 Message

811

December 15th, 2021 00:00

CVE-2021-44228 for VRO Plugin

Hello VRO Engineering,

could you please provide feedback on whether VRO Plugin is affected by the Log4j vulnerability please? It´s missing from the official KB.

Thank you!

Agnes

gashof

46 Posts

December 17th, 2021 04:00


Hi Agnes,

Per engineering:

VMware vRO was affected by log4j2 RCE vulnerability.  Please see VMware KBs (KB87120 for vRO 8.x, KB87122 for vRO 7.6) and Dell official KB (dell-response-to-apache-log4j-remote-code-execution-vulnerability). vRO Plugins have been updated on it and further detailed info (e.g. DSA doc) will be posted soon.

gashof_0-1639745911307.png

 

Was this post helpful?

View All

No Events found!

Top