Citrix Products affected from log4j zero-day vulnerability (CVE-2021-44248)? in XenMobile 10.x Posted December 15, 2021 On 12/14/2021 at 1:43 PM, Erwin de Beer1709152891 said: After 4 days still no information about if XenMobile is vulnerable. This is very worrying ... Yes, Citrix Endpoint Management (aka XenMobile) is affected by the log4j vulnerability. If you have a firewall between the internet and your Citrix Endpoint Management nodes, block outgoing LDAP/LDAPS/DNS Reverse callback.
Citrix Products affected from log4j zero-day vulnerability (CVE-2021-44248)?
in XenMobile 10.x
Posted
Yes, Citrix Endpoint Management (aka XenMobile) is affected by the log4j vulnerability.
If you have a firewall between the internet and your Citrix Endpoint Management nodes, block outgoing LDAP/LDAPS/DNS Reverse callback.