Forum Discussion

3 years ago

Apache Log4j on Windows Detection Settings Adjustment...

Apache Log4j on Windows Detection Settings Adjustment Summary Prior to this update and out of an abundance of caution, the manifest and properties file inspection of Java archive files was enabled ...

Tenable Research

jones_bryan

Connect Contributor III

3 years ago

@Greg Betz Is it still safe to assume that even with removal of the 'Show potential false positive' requirement that log4j vulnerabilities will be marked as mitigated if a subsequent scan runs without the 'Thorough' scan option being enabled?

gbetz
3 years ago
You are correct–the removal of the 'Show potential false positive' requirement will not affect mitigations.

Forum Discussion

Apache Log4j on Windows Detection Settings Adjustment...

Recent Discussions

Improved Linux RPM Package Handling

Plugin output for language library enumeration

Research Release Highlight - Potential Vulnerabilities

Improvement to Printer OS Fingerprinting

Tenable Post-Quantum Cryptography Inventory Support

Americas

Europe

Asia / Australia