This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Advisory: New patches available for 2020 R2, 2021 R1, 2021 R2 for CVE-2021-44228/ CVE-2021-45046/ CVE-2021-45105

The Patches for Sage CRM are now available and have been distributed to the Sage Regions.

These patches address the following vulnerabilities within Log4J

CVE-2021-44228
CVE-2021-45046
CVE-2021-45105

They are available for the following versions;

Sage CRM 2020 R2
Sage CRM 2021 R1
Sage CRM 2021 R2

Please note that these patches apply to Sage CRM standalone and when integrated with Sage accounting products; Sage 50, Sage 100, Sage 200, Sage 1000, Sage 300, Sage X3 and Sage Intacct.

The Sage Regions will announce the appropriate download links shortly, and share the status of their application to integrated products.

In all cases, it’s our advice the patches are applied as soon as possible to ensure Sage CRM is using the appropriate version of Apache Log4j.