In trying to assess implications of the CURL hack upon Data Insight I see the \DataInsight\perl\site\lib\HTTP\Any\Curl.pm perl module lists libcurl 7.21.6 or newer. While that is a very old version and specifically the CVEs call out Affected Versions...
Is DI vulnerable to the newly disclosed vulnerability?This is not log4shell and is a new disclosure. Thank youPix
With the release of a POC for the Apache Log4j2 CV can we confirm Data Insight is or is not affected?NIST- https://nvd.nist.gov/vuln/detail/CVE-2021-44228Mitre - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228,== What effect will settin...
