Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability

nass2023 — Fri, 02 Jan 2026 14:45:42 GMT

Good morning,

My organization has identified a vulnerability in Talend Open Studio 8.0 with the log4j-core-2.13.2.jar file. Our IT security has attempted to remove this file and install Open Studio 8.0, but apparently it is integral to the program? Unless there is a patch applied by Talend to remove the vulnerability or the offending .jar file is removed form Open Studio 8.0, we will not be able to use the software. Is Talend working on a solution? Thank you.

Re: Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability

Anonymous — Fri, 27 Oct 2023 03:07:07 GMT

Hello,

As Talend 8 version was released prior to the vulnerability being revealed.

I’m afraid we do not supply patches for the Open Studio releases. We only provide patches for our subscription products.

We will keep you updated on this issue.

Best regards

Sabrina

topic Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability in Talend Studio

Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability

Re: Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability