Skip to main content

Qlik

cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Announcements
A fresh, new look for the Data Integration & Quality forums and navigation! Read more about what's changed.
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
nass2023
Contributor
‎2023-10-26 10:57 AM

Talend Open Studio 8.0 log4j-core-2.13.2.jar vulnerability

Good morning,

My organization has identified a vulnerability in Talend Open Studio 8.0 with the log4j-core-2.13.2.jar file. Our IT security has attempted to remove this file and install Open Studio 8.0, but apparently it is integral to the program? Unless there is a patch applied by Talend to remove the vulnerability or the offending .jar file is removed form Open Studio 8.0, we will not be able to use the software. Is Talend working on a solution? Thank you.

Labels (4)
Labels
324 Views
0 Likes
1 Reply
Anonymous
Not applicable
‎2023-10-26 11:07 PM

Hello,

As Talend 8 version was released prior to the vulnerability being revealed.

I’m afraid we do not supply patches for the Open Studio releases. We only provide patches for our subscription products.

We will keep you updated on this issue.

Best regards

Sabrina

324 Views
0 Likes
Top