https://community.qlik.com/t5/Qlik-Replicate/Zero-day-Vulnerability-discovered-for-Apache-Log4j/m-p/1871318#M1396 <P>Zero day Vulnerability discovered for Apache Log4j</P> <P>Dear Sir/Madam,</P> <P>Currently we are using “Attunity Replicate (64-bit) 6.2.0.271” which is lower than affected versions you have stated. Does it mean our versions is not affected by this vulnerability? as we unable to find log4j in Attunity Replica.</P> <P>Can we proceed to mitigate the steps indicated in the below link? However, we do not have "endpoint_srv" folder/directory.</P> <P><A href="https://community.qlik.com/t5/Knowledge/CVE-2021-44228-Handling-the-log4j-lookups-critical-vulnerability/ta-p/1869996" target="_blank">https://community.qlik.com/t5/Knowledge/CVE-2021-44228-Handling-the-log4j-lookups-critical-vulnerability/ta-p/1869996</A></P> <P>Mitigation - Endpoint Server - Windows<BR />1. Edit the file &lt;installation-root&gt;\Replicate\endpoint_srv\bin\rependctl.bat <BR />(&lt;installation-root&gt; typically refers to C:\Program Files\Attunity)</P> <P>2. Add the string ‐Dlog4j2.formatMsgNoLookups=true in the highlighted location shown below (last line of script):</P> <P>3. Save the file and restart the Replicate Windows service with the command:</P> <P>Other details are:<BR />It's on Windows<BR />Intranet<BR />On-Premises</P> <P>Could you please advise how do we mitigate the log4j vulnerability issue?<BR />Appreciate your urgent response for this.<BR />Thank you<BR />Jyothi</P> Wed, 15 Dec 2021 09:15:04 GMT P1341017 2021-12-15T09:15:04Z https://community.qlik.com/t5/Qlik-Replicate/Zero-day-Vulnerability-discovered-for-Apache-Log4j/m-p/1871318#M1396 <P>Zero day Vulnerability discovered for Apache Log4j</P> <P>Dear Sir/Madam,</P> <P>Currently we are using “Attunity Replicate (64-bit) 6.2.0.271” which is lower than affected versions you have stated. Does it mean our versions is not affected by this vulnerability? as we unable to find log4j in Attunity Replica.</P> <P>Can we proceed to mitigate the steps indicated in the below link? However, we do not have "endpoint_srv" folder/directory.</P> <P><A href="https://community.qlik.com/t5/Knowledge/CVE-2021-44228-Handling-the-log4j-lookups-critical-vulnerability/ta-p/1869996" target="_blank">https://community.qlik.com/t5/Knowledge/CVE-2021-44228-Handling-the-log4j-lookups-critical-vulnerability/ta-p/1869996</A></P> <P>Mitigation - Endpoint Server - Windows<BR />1. Edit the file &lt;installation-root&gt;\Replicate\endpoint_srv\bin\rependctl.bat <BR />(&lt;installation-root&gt; typically refers to C:\Program Files\Attunity)</P> <P>2. Add the string ‐Dlog4j2.formatMsgNoLookups=true in the highlighted location shown below (last line of script):</P> <P>3. Save the file and restart the Replicate Windows service with the command:</P> <P>Other details are:<BR />It's on Windows<BR />Intranet<BR />On-Premises</P> <P>Could you please advise how do we mitigate the log4j vulnerability issue?<BR />Appreciate your urgent response for this.<BR />Thank you<BR />Jyothi</P> Wed, 15 Dec 2021 09:15:04 GMT https://community.qlik.com/t5/Qlik-Replicate/Zero-day-Vulnerability-discovered-for-Apache-Log4j/m-p/1871318#M1396 P1341017 2021-12-15T09:15:04Z https://community.qlik.com/t5/Qlik-Replicate/Zero-day-Vulnerability-discovered-for-Apache-Log4j/m-p/1871338#M1398 <P>Hello&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/159487">@P1341017</a>&nbsp;,</P> <P>You are right. Replicate 6.2 does not introduce the endpoint server yet. However the old Replicate versions include 5.5/6.2/6.4/6.5 are out of support. The minimize support version is&nbsp;<SPAN>&nbsp;April 2020 (formerly version number 6.6). see&nbsp;<A title="Qlik Replicate Product Lifecycle" href="https://community.qlik.com/t5/Product-Support-Lifecycle/Qlik-Replicate-Product-Lifecycle/ta-p/1837201" target="_blank" rel="noopener">Qlik Replicate Product Lifecycle</A>&nbsp;.</SPAN></P> <P><SPAN>If you are running 6.2 still Please plan to upgrade to supported versions asap.</SPAN></P> <P><SPAN>BTW, before the upgrade please take care if the source/target database versions (include the server version, and corresponding client driver version) are supported, and also verify if the Replicate OS version is supported as well in&nbsp;<A title="Support Matrix" href="https://help.qlik.com/en-US/replicate/May2021/Content/Replicate/Main/Guides.htm" target="_blank" rel="noopener nofollow noreferrer">Support Matrix</A>&nbsp;. Please Check the&nbsp;<A title="Release Notes" href="https://help.qlik.com/en-US/replicate/May2021/Content/Replicate/Main/Guides.htm" target="_blank" rel="noopener nofollow noreferrer">Release Notes</A>&nbsp; of each major version for the detailed upgrade instructions.</SPAN></P> <P>Hope this helps.</P> <P>Regards,</P> <P>John.</P> Wed, 15 Dec 2021 09:41:48 GMT https://community.qlik.com/t5/Qlik-Replicate/Zero-day-Vulnerability-discovered-for-Apache-Log4j/m-p/1871338#M1398 john_wang 2021-12-15T09:41:48Z