A new vulnerability in the Apache Log4j Java logging library affecting all Log4j versions prior to 2.15.0. It has been identified as CVE-2021-44228.
Some DSS products are affected by this vulnerability. This vulnerability allows an unethical attacker to execute code remotely on the target server by sending data request packets.
Affected Products
The following product series and models are currently known to be affected:
Affected Model |
Affected Version |
Fix Software |
DSS Express |
V8.000.0000002.0.R.20210506 V8.000.0000003.0.R.20210729 V8.000.0000004.0.R.20211119 |
General_DSS-Windows_Patch_Installer_V1.001.0000003.0.R.202112305.zip |
DSS Pro |
V7.002.0000005.0.R.20200414 V7.002.0000005.1.R.20200703 V7.002.0000005.2.R.20201223 V8.000.0000002.0.R.20210506 V8.000.0000003.0.R.20210729 V8.000.0000004.0.R.20211119 |
|
NVR-SMC1 |
V8.000.0000002.0.R.20210728 |
General_DSS-Linux_Patch_Installer_V1.001.0000003.0.R.202112301.zip |