VMware Cloud Community
Joliie
Contributor
Contributor
Jump to solution

log4j VMware vCenter Server and modules for Windows

Hi,

If I am reading this https://kb.vmware.com/s/article/87081#vCenter67 correctly, the VMware vCenter Server and modules for Windows is not affected by the log4j?

 

/Bjarne

Reply
0 Kudos
1 Solution

Accepted Solutions
fabio1975
Commander
Commander
Jump to solution

6 Replies
fabio1975
Commander
Commander
Jump to solution

Ciao 

The Windows vCenter is affect.

Check this Link

 Workaround instructions to address CVE-2021-44228 in vCenter Server Windows (87096) (vmware.com)

Fabio

Visit vmvirtual.blog
If you're satisfied give me a kudos

Joliie
Contributor
Contributor
Jump to solution

thank you ( found it as well hunting for more log4j errors) https://kb.vmware.com/s/article/87096

 

Reply
0 Kudos
aarefsayyad
Contributor
Contributor
Jump to solution

Thanks for reponse,  are we able to fetch which log4j version are using by windows Vcenter? 

Reply
0 Kudos
Joliie
Contributor
Contributor
Jump to solution

DOH vMON.py is an attachment to the workaround.

Best regards
Bjarne

Reply
0 Kudos
Joliie
Contributor
Contributor
Jump to solution

There is a Powershell script in this Reddit post, that will give you a list for those files on the server/pc.

https://old.reddit.com/r/blueteamsec/comments/rd38z9/log4j_0day_being_exploited/

The result I get, with the lastest version of vcenter installed, is that I have 2.11.2 and 2.8.2 on my installation.

aarefsayyad
Contributor
Contributor
Jump to solution

Thank you, I also found log4j XML file location which shows version details. Attached path details 

Reply
0 Kudos