Cannot mitigate log4j issue on HCMPUM46
I perform a installation of HCMPUM46 on Windows using native installation. After installation I ran a log4j detector on the drive I installed it on.
The tool indicated that I had a vulnerability with the following below.
T:\psoft\HR92U046\db\oracle-server\19.3.0.0\suptools\tfa\release\tfa_home\jlib\tfa.war!/WEB-INF/lib/log4j-core-2.9.1.jar contains Log4J-2.x >= 2.0-beta9 (< 2.10.0) VULNERABLE
I'm not seeing this full path to mitigate the issue. Can someone advise how to correct this issue.
Thanks AG