Article - CS358998

Apache Log4j Security Vulnerability – Impact on Arbortext Products

Modified: 25-Feb-2022   


Applies To

  • PTC Arbortext Editor 8.0.0.0 to 8.1.2.0
  • PTC Arbortext Publishing Engine 8.0.0.0 to 8.1.2.0
  • PTC Arbortext Styler 8.0.0.0 to 8.1.2.0
  • PTC Arbortext Advanced Print Publisher 12.0
  • PTC Arbortext Layout Developer 12.0
  • PTC Arbortext Layout Editor 12.1

Description

  • A number of vulnerabilities have been reported in the 3rd party log4j library
  • This article has been created to help provide customers with information and recommended actions for:
  1. CVE-2021-44228 (log4j v2)
  2. CVE-2021-45046 (log4j v2)
  3. CVE-2021-45105 (log4j v2)
  4. CVE-2021-44832 (log4j v2)
  5. CVE-2021-4104 (log4j v1)
  6. CVE-2019-17571 (log4jv1)
  7. CVE-2020-9488 (log4jv1)
  8. CVE-2022-23302 (log4jv1)
  9. CVE-2022-23305 (log4jv1)
  10. CVE-2022-23307 (log4jv1)
  • Due to the criticality of these vulnerabilities, it is strongly recommended to take immediate action to remediate against potential attacks
This is a printer-friendly version of Article 358998 and may be out of date. For the latest version click CS358998