VMware Horizon Community
Corpus_no
Contributor
Contributor
‎12-13-2021 11:54 PM

How can I test if the workaround for CVE-2021-44228 (Log4j) is applied in Horizon agent?

As the subject say, how can I verify if the workaround is applied correctly, after implementing the registry based fix for Log4j vulnerability to Horizon Agent on Windows?

(Ref.: https://kb.vmware.com/s/article/87073)

Reply
0 Kudos
1 Reply
mrkasius
Hot Shot
Hot Shot
‎12-14-2021 12:02 AM

Hi Corpus_no,

The Windows Horizon Agent 2006, 7.13.x, 7.10.x are vulnerable only if vRealize Operations for Horizon desktop agent is enabled/installed. VMware is still working on a workaround.

if you mean the change to the Connection Server then you can run the scripted procedure (again). This should give the result 'Not required'.

 

Reply
0 Kudos