NetWorker: Server File Identified as Affected by the Apache Log4j 1.x Vulnerabilities-False Positive
요약: A Security Vulnerability Scanner detects the "/nsr/authc/webapps/ebr-server.war" server file may contain the Apache Log4j Security Vulnerability in a NetWorker 19.6.0 Datazone.
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
증상
A Security Vulnerability Scanner detects the server file "/nsr/authc/webapps/ebr-server.war" may contain the Apache Log4j Security Vulnerability in a NetWorker 19.6.0 Datazone.
원인
The NetWorker Datazone was upgraded from a previous NetWorker release (such as 19.3.0.0), which used the ebr-server.war server file. A new deployment of NetWorker 19.6.0.0 or later does not include the ebr-server.war server file.
The NetWorker server upgrade does not remove remnant files from the /nsr/authc/webapps. This is expected to be addressed in a future NetWorker release.
The NetWorker server upgrade does not remove remnant files from the /nsr/authc/webapps. This is expected to be addressed in a future NetWorker release.
해결
NetWorker 19.6.0.0 and later installation does not require "/nsr/authc/webapps/ebr-server.war" file. This file can be removed from the server.
Copy the file off the server or remove it with the command:
Copy the file off the server or remove it with the command:
rm -rf /nsr/authc/webapps/ebr-server.war
추가 정보
Apache Log4j Security Vulnerability does not affect the "/nsr/authc/webapps/ebr-server.war" file as per Dell article 182335.
문서 속성
문서 번호: 000200967
문서 유형: Solution
마지막 수정 시간: 14 6월 2023
버전: 4
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.