MS Exchange Log4j vulnerabilites

Jenna Rose Flores 21 Reputation points
2021-12-15T09:49:55.403+00:00

can you please confirm that the said issue below does not affect our MS Exchange.

https://www.kaspersky.com/blog/log4shell-critical-vulnerability-in-apache-log4j/43124/

Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,227 questions
0 comments No comments
{count} votes

Accepted answer
  1. Leon Laude 85,566 Reputation points
    2021-12-15T09:53:43.347+00:00

    HI anonymous user,

    Microsoft products do not ship with Apache Log4j by default, Exchange does not run any services which integrate to the vulnerable component by default.
    So you should be safe, for more information see:
    https://www.microsoft.com/security/blog/2021/12/11/guidance-for-preventing-detecting-and-hunting-for-cve-2021-44228-log4j-2-exploitation/


    If the reply was helpful please don't forget to upvote and/or accept as answer, thank you!

    Best regards,
    Leon

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful