2021-12-14, 09:32 AM
A remote-code execution vulnerability has been found in the Apache log4j logging library.
This library is widely used in java applications and is used within the Rapide runtime.
Rapide has been updated to include the latest 2.15.0 version of log4j and this is included in the following updated releases of the software which are now available to download:
Other platforms for example Windows clients or server software are not affected.
if you are using an earlier release of Rapide or the GuardIEn web client then it is highly recommended that you upgrade.
This library is widely used in java applications and is used within the Rapide runtime.
Rapide has been updated to include the latest 2.15.0 version of log4j and this is included in the following updated releases of the software which are now available to download:
- Rapide 3.0.2
- GuardIEn web client 8.8.0 (updated to show 8.8.0a in the home page)
- GuardIEn web client 8.7.5 (updated to show 8.7.5 in the home page)
Other platforms for example Windows clients or server software are not affected.
if you are using an earlier release of Rapide or the GuardIEn web client then it is highly recommended that you upgrade.
--
Darius Panahy, IET Ltd
Darius Panahy, IET Ltd