CVE-2017-5645 and CVE-2019-17571 vulnerability

Issue:
Perle Systems products are Not Vulnerable to CVE-2017-5645 and CVE-2019-17571.
A flaw was discovered in Log4j, where a vulnerable SocketServer class may lead to the deserialization of untrusted data. This flaw allows an attacker to remotely execute arbitrary code when combined with a deserialization gadget. (CVE-2019-17571).

Solution:
Perle Systems has confirmed that all products do not incorporate Apache Log4j.
Products impacted:
none


Article ID:
645
Published:
12/13/2021 12:25:13 PM
Last Modified:
12/13/2021 1:41:25 PM
Keywords:
CVE-2019-17571,vulnerability,IOLAN,Log4j,CVE-2017-5645