[CVE-2021-44832] log4j 보안취약점 업데이트 필요

[20hyun]

Describe the bug

log4j 보안취약점 스캔을 통해 확인된 결과입니다. 조치필요여부 확인부탁드립니다.

• 보안취약점 확인 https://github.com/logpresso/CVE-2021-44228-Scanner

• 보안취약점 조치방법 https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=36397

• 확인내역

> log4j2-scan.exe --scan-log4j1 ./eXperDB-Monitoring
Logpresso CVE-2021-44228 Vulnerability Scanner 2.7.1 (2022-01-02)
Scanning directory: ./eXperDB-Monitoring
[*] Found CVE-2021-44832 (log4j 2.x) vulnerability in C:\imsi\eXperDB-Monitoring\eXperDB_Server\eXperDB_Monitoring_Agent\lib\log4j-core-2.17.0.jar, log4j 2.17.0
[*] Found CVE-2021-44832 (log4j 2.x) vulnerability in C:\imsi\eXperDB-Monitoring\eXperDB_Server\eXperDB_Monitoring_Agent_Manager\lib\log4j-core-2.17.0.jar, log4j 2.17.0

[prensgold]

symantec gives an error for your application and automatically deletes it from the system.