bitvoodoo Advisories
Space shortcuts
Space Tools
bitvoodoo Advisories BVADVIS

Versions Compared

Old Version 3

changes.mady.by.user Unknown User (niklas.becker@bitvoodoo.ch)

Saved on

compared with

New Version 4

changes.mady.by.user Unknown User (niklas.becker@bitvoodoo.ch)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Communcation by Vendor

On we learned via EPS that there is a security vulnerability in their app PTC & STC Insight Extension for Confluence Server related to Log4Shell (CVE-2021-44228). We urge our customers to deactivate the app for the moment until a new release with fix is available.

Our cloud apps are not affected by Log4, however our PTC server/datacenter app is. We are working on a hotfix and will release it as soon as possible.

Best Regards

Show If
groupbitvoodoo-all

- https://focuspro.atlassian.net/servicedesk/customer/portal/4/DESKAA-185



Page properties


Date

 

Product

PTC & STC Insight Extension 

VulnerabilityHigh
CVECVE-2021-44228
Marketplace link

https://marketplace.atlassian.com/apps/1216868/

Base productConfluence
VendorEPS



Recommendation by bitvoodoo

  • If you use PTC & STC Insight Extension, deactivate or uninstall the app
  • Wait for a new release, watch the App on the Atlassian Marketplace to learn about new releases via email


Support

If you need any assistance please contact the bitvoodoo support via support.bitvoodoo.ch.


bitvoodoo Advisories BVADVIS