Forum » Support and Bug Reports »

Post a reply

Before posting, please read how to report bug or request support effectively.

Bug reports without an attached log file are usually useless.

Username

Subject

Message body

Font colour:

Font size:

Options

Disable BBCode in this post

Notify me when a reply is posted (registered users only)

Add an Attachment

If you do not want to add an Attachment to your Post, please leave the Fields blank.

Filename

(maximum 10 MB; please compress large files; only common media, archive, text and programming file formats are allowed)

File Comment

Options

Private file (available to author and site moderators only)

Topic review

martin

Re: Log4j vulnerability

2021-12-15

See https://winscp.net/forum/viewtopic.php?t=31790#109980

malc81

Log4j Vulnerability

2021-12-14 10:37

Also looking for feedback on this. Thanks.

bfelknor

Seeking Details of log4j Vulnerability: CVE-2021-44228

2021-12-13 22:18

Please post a statement clarifying any exposure for WinSCP (all products) and specify what versions are affected and which versions are remediated.

bhui

2021-12-13 20:11

Our company is also looking for confirmation as well.
For reference, the specific vulnerability it is being reported as Log4j version 2.14.1 CVE-2021-44228.
Thank you.

mnaser

Log4j vulnerability

2021-12-13 18:00

Can you please let us know if WinSCP is affected by the recent Log4j vulnerability? If it is, which versions are affected and how to resolve the issue?

Post a reply

Topic review

Re: Log4j vulnerability

Log4j Vulnerability

Seeking Details of log4j Vulnerability: CVE-2021-44228

Log4j vulnerability

Documentation

Support

Associations

Follow Us