Do you know whether Cisco Networks Add-on has a ri...

yuhshi · ‎12-16-2021

Hello,

I'm trying to find out recent CVE-2021-44228 and CVE-2021-45046( log4j).

I use Cisco Networks Add-on that is not supported by splunk.

We can see impacted products by CVE-2021-44228 and CVE-2021-45046 from below link. And I know Cisco Networks Add-on isn't written in that.

But, I'm afraid that whether Cisco Networks Add-on has a risk or not, because it isn't supported by splunk.

Do you know whether Cisco Networks Add-on has a risk or not?

If it has a risk, please tell me how to resolve it.

Thanks.

venkatasri · ‎12-16-2021

contents doesn't have any .jar lib and it only contains .conf files, this is not supported by Splunk you can double check with developer.

Please post a question on Splunk Answers and tag it with "Cisco Networks Add-on" if there is anything you would like to see in this app.

---

An upvote would be appreciated if this reply helps!

yuhshi · ‎12-16-2021

Do you know whether Cisco Networks Add-on has a risk or not? Log4Shell (CVE-2021-44228 and CVE-2021-45046)