Forum Discussion

DamienC's avatar
3 years ago

Question/help ; Datasource to parse servers exposed to the log4j vulnerability ?

Hi everyone,

I'm new to LM and am looking for a way to achieve this through LogicMonitor. Maybe some of you guys already found a way ?
We're still trying to figure if we're looking at an installer package version (if so, how) or at a specific file version (if so, how).


2 Replies

  • Anonymous's avatar

    A propertysource would probably work better. Until simpler testing tools come out, you could ssh into your server and use something like syft to create a BoM and see if that BoM contains the offending version of log4j.