NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

janpeter1's avatar
janpeter1
Luminary
Dec 16, 2021

RAIADare and Log4j vulnerability?

Hi I read in another post that OS6 does not contain software that is vulnerable to Log4j.   But what about RAIDar app?   I run macOS and I find that RAIDar is blocked.  It is a month or so since...
StephenB's avatar
StephenB
Guru - Experienced User
Dec 17, 2021
janpeter1 wrote:

Hi

I read in another post that OS6 does not contain software that is vulnerable to Log4j.

 

But what about RAIDar app?

 

Just want to add this statement from Netgear (emphasis added):

ChristineT  wrote:

NETGEAR is aware of this vulnerability. Our initial findings confirm this vulnerability does not appear to affect NETGEAR products or services. However, we are continuing to investigate any possible risks. If any products or services are found to be vulnerable we will post an update on our NETGEAR Product Security page.

 

Though as schumaku says, you generally don't need RAIDar.  It does have some diagnostic capabilities, but if the NAS is working ok you don't need it.  So you could live without it for a while.  Also, as he also says, the vulnerability isn't inherent to Java itself.  It's an application library written in Java - the application library comes from Apache.    

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More