The Columbus and ColumbusPlus software applications are not susceptible to the Log4j vulnerability (CVE-2021-44228 & CVE-2021-4104)
Columbus utilizes the OMERO database architecture. The Blitz middleware used by OMERO uses log4j version 1.2, not 2.x. By default is not configured to use JMSAppender nor JNDI; hence, it’s not affected by CVE-2021-44228 or CVE-2021-4104.
Comments
0 comments
Article is closed for comments.