Interesting. When I called support for assistance on this, they told me they could not help and that I would have to contact sales and implementation.
------------------------------
Lisa Busby
------------------------------
Original Message:
Sent: Tue December 21, 2021 12:59 PM
From: Matt Shaver
Subject: Log4j
Thanks Eamonn, but that is not related to the current log4j vulnerability making waves.
This is the document that addresses current concerns and contains remediation instructions. If there are any other concerns, please contact support directly.
https://www.ibm.com/support/pages/node/6527878
------------------------------
Matt Shaver
System Architect
IBM
mshaver@us.ibm.com
Original Message:
Sent: Mon December 20, 2021 04:12 AM
From: Eamonn O'Mahony
Subject: Log4j
Hi Kjetil
Yes, this was discovered and then patched last January:
https://www.ibm.com/support/pages/node/6403812
Best
------------------------------
Eamonn O'Mahony
Technical Client Success Manager
IBM Security
Dublin, Ireland
Original Message:
Sent: Fri December 17, 2021 05:24 AM
From: Kjetil Holm
Subject: Log4j
Hi,
I'm referring to your list of not affected and remediated products and services (An update on the Apache Log4j CVE-2021-44228 vulnerability - IBM PSIRT Blog).
I couldn't find the IBM MaaS360 Cloud Extender in these lists. Has the Cloud Extender been evaluated for the Log4j vulnerability? (Including all the services like Secure Gateway, etc.)
Best Regards,
Kjetil
------------------------------
Best Regards,
Kjetil Holm
------------------------------