This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

[CVE-2021-44228] Apache Log4j2 RCE

dawoon_lee
New Contributor II

‎12-12-2021 05:51 PM

Hello.

Our customer is running a Ruckus SmartZone (sz-100) controller.
The version of the controller is 5.1.1.0.598.


The customer asked if the SmartZone has the following this security vulnerabilities.

** Vulnerability: [CVE-2021-44228] Apache Log4j2 RCE

Thank you for your valuable answers to the above questions.

91 REPLIES 91

mark_pledl
Contributor
In response to michiel_timmers

‎12-17-2021 12:34 PM

@muu 

Yes it looks like. Maybe something wrong with them.

mark_pledl
Contributor
In response to michiel_timmers

‎12-17-2021 02:03 PM

The are back now. But KBA #12025 is still missing.

JTakaMT
New Contributor III
In response to michiel_timmers

‎12-17-2021 02:24 PM

Missing for me as well. I have a ticket that was already opened and updated the support ticket asking about the KB article. 

jtchi
New Contributor

‎12-17-2021 11:51 AM

Anyone found the proper install instructions for vSZ 5.2.2?  When I follow the link from SZ and vSZ - Steps to Implement CVE-2021-44228 log4j2 Patch -- KBA # 000012025 and search for that number nothing comes up.  Why are Ruckus documentation and download processes so convaluted?

diego_garcia_de
Contributor III
In response to jtchi

‎12-17-2021 12:42 PM

@jtchi Same here. Searching for downloads for smartzone there is nothing recently released. All the posted links to KSPs lean no-where (error pages / 404 pages ). Searching the KB for 000012025  returns nothing. Has this been marked as "externally available"?

Copyright © 2024 Khoros, LLC