Solved
Forticlient EMS detect " Security Vulnerability CVE-2018-1285 for log4net "
Hi All,
Forticlient EMS server detect Security Vulnerability CVE-2018-1285 for log4net on client's PC .
How can i mitigate and solve this issue .
Best regards
Hi,
Thank you for using Fortinet Community.
For your information, FortiGuard services have added the CVE-2018-1285 vulnerability on the 28th July 2021. Hence, the vulnerability scan is now able to identify it.
As mentioned in the FortiGuard website,
"Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files".
You may need to manually upgrade the software (that causes this vulnerability) to version 2.0.10 or higher.
The EMS GUI will show which software/application is using log4net, which you need to upgrade. If the software is not listed, you will need to look the Endpoint log and find the software associated with the log4net.
Please let me know if this helps :)
Best,
Irfan
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.