Hello,
I am sure you all are aware of the new Log4j vulnerability that has been found in Log4j versions 2.0 to 2.15.
There has been many updates and articles on more recent versions of Maximo from IBM, but we are using an older version, 7.1.1.7 with WebSphere 6.1.0.43. I have looked online if actions are required for older versions of Maximo, but I could not find anything for our version. I believe our Maximo version uses Log4j version 1.x.
In addition, we have Maximo set up only for intranet usage, and it is not accessible to the public.
Do we have to be worried about the Log4j vulnerability?
If so, do you have any recommendations for our version?
Any info would be appreciated.
Thanks.
#Security------------------------------
Kevin Jo
USSUPI
------------------------------