Meraki

Community

Apache Log4j Vulnerubility

Kyojuro
Here to help
‎Dec 22 2021 10:03 AM
‎Dec 22 2021 10:03 AM

Apache Log4j Vulnerubility

Our SD WAN got flagged for Apache Log4j 2.0.x < 2.15.0 RCE Vulnerability (HTTP, Log4Shell) - Active Check

In our Security Monitor but none of the other SD WANs got this Vulnerability. Anyone familiar with this? 

 

Thank you. 

 

0 Kudos
3 Replies 3
ww
Kind of a big deal
Kind of a big deal
‎Dec 22 2021 10:17 AM
‎Dec 22 2021 10:17 AM

What sdwan is our sdwan and other sdwans? 

Al running same firmware?

And what Security Monitor?

 

0 Kudos
In response to ww
Kyojuro
Here to help
‎Dec 22 2021 12:49 PM
‎Dec 22 2021 12:49 PM

All SD WANS are MX68s. 

All running same firmware (current version)

Arctic Wolf. 

0 Kudos
DarrenOC
Kind of a big deal
Kind of a big deal
‎Dec 22 2021 2:25 PM
‎Dec 22 2021 2:25 PM

What do you see when you go into Security Centre and look at the Mx events? Click into the packet captures and you’ll see which endpoint is possibly affected.

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.