Ask us how we can help secure your environment with the top 10-12 security enhancements every firm should have.  #ManagedServices

Alert:
iManage Security Vulnerability due to third-party Apache component Log4j

December 13, 2021

Mitigation instructions available

Issue / Vulnerability

The iManage Security team identified a vulnerability affecting on-premises versions of iManage products.

If not mitigated, potential remote exploits to an Apache component called Log4J can be executed by a malicious attacker. This vulnerability is known worldwide as CVE-2021-44228.


Who Is Affected?

On-premises customers running any of the following products:

  • iManage Work Indexer powered by IDOL 10.3.0.26 and later
  • iManage Work Indexer powered by RAVN 10.3.x
  • iManage Records Manager 10.3.x and later
  • iManage Security Policy Manager (All versions)
  • iManage Threat Manager (All versions)
  • iManage Preview server 10.3.0.27 and later

IMPORTANT NOTE – NOT AFFECTED:

  • iManage Cloud
  • iManage Work Server

Remediation / Action Plan

To remediate the Apache Log4j security vulnerability in your on-premises environment, we highlighted mitigation tasks for the affected iManage component:

iManage Work Indexer powered by IDOL 10.3.0.26 and later — verify & update Log4j version

  • Affected components:
    • WorkSite Connector
    • DiffTool

iManage Work Indexer powered by RAVN 10.3.x — update solr.in.cmd configuration file

  • Affected component
    • RAVN Solr

iManage Records Manager 10.3.x and later — update programinit.properties configuration file

  • Affected components
    • Records Manager Server
    • Records Manager Indexer

iManage Security Policy Manager — update spm-agent-service-irm.xml configuration file

  • Affected components
    • Records Manager Agent
    • Adjust Security REST Service

iManage Threat Manager — update docker-compose_v10.yaml docker-compose file

Contact Cornerstone.IT to help mitigate this vulnerability.

Cornerstone.IT