Pega Log4j Zero Day Vulnerability
We are using on-premises Pega Platform 8.2.3 and 8.5.3 with Websphere Liberty.
Based on your last Security Advisory (https://docs-previous.pega.com/security-advisory/security-advisory-apache-log4j-zero-day-vulnerability) our 8.2.3 environments are only impacted by the Log4j embedded within the Pega Platform product, whereas our 8.5.3 environment is also impacted by the Kafka libraries vulnerability.
Can you confirm that it is not useful to apply the kafka fix for our Pega 8.2.3 environment ?
Pega 8.2.3 Kafka libraries used : kafka-18.104.22.168
Pega 8.5.3 Kafka libraries used : kafka-22.214.171.124
Thanks in advance,