CVE-2021-44228 and CVE-2021-45046 disclosed security vulnerabilities in the Apache Log4j 2 version 2.15 or below. 


To know more details on this Vulnerability and the affected products/releases refer the below article

https://support.versa-networks.com/a/solutions/articles/23000023551


We have patched the affected software versions and made it available for use. 

 

We strongly recommend using the new images. Software can be downloaded from: 

 

There are no special procedures or exceptions to upgrade to this software version. Please follow the regular instructions outlined here:

https://docs.versa-networks.com/Getting_Started/Deployment_and_Initial_Configuration/Software_Upgrade/Upgrade_Software_on_Headend_and_Branch


The security research team has developed signatures to detect this attack and protect the network via SPACK # 1907