Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Who Me Too'd this topic

Who Me Too'd this topic

alexanderputt
Occasional Member - Level 1
‎Dec 14, 2021 12:36 PM
‎Dec 14, 2021 12:36 PM

Tech question - Log4j Vulnerability CVE-2021-44228

Hi Team Concur,

Have there been any definitive statements from your organization around the Log4j vulnerability? As Concur / SAP may be already be aware, there is a critical vulnerability on the log4j library. How do we get a formal assessment from your technical teams to address the following:

  • Is our version of Concur affected?
  • If yes, do we have remediation planned and a target date to apply it?

CVE References

https://logging.apache.org/log4j/2.x/security.html.

https://www.cisa.gov/uscert/ncas/current-activity/2021/12/13/cisa-creates-webpage-apache-log4j-vulne...

 

4 people had this issue.
Who Me Too'd this topic
SAP Concur Community
SAP Concur
SAP
Additional Resources
© Copyright 2024 Concur Technologies, Inc. All rights reserved.
Privacy Policy|Terms of Use|Do Not Share/Sell My Personal Information|