evernat
commented
2 years ago There is no impact of the 2 log4j CVE on the javamelody monitoring plugin for JIRA/Confluence/Bamboo/Bitbucket. The plugin does not include log4j.
Closed bharadwajjannutd closed 2 years ago
evernat
commented
2 years ago There is no impact of the 2 log4j CVE on the javamelody monitoring plugin for JIRA/Confluence/Bamboo/Bitbucket. The plugin does not include log4j.
Hi team,
For the recent security vulnerabilities, is there any impact from the plugin perspective on Confluence Server or any Atlassian applications: -> CVE-2021-45046: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046 -> CVE-2021-44228: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228 Please help with the mitigation steps if there is any impact.
Thank you, Bharadwaj Jannu