December 17, 2021 - CVE-2021-44228

Cloudera released a new version of CDP Data Visualization (CDV). This new version addresses CVE-2021-44228 which affects products using Apache Log4j2 versions 2.0 through 2.14.1.

If you use CDV with Cloudera Data Science Workbench, no action is required.

If you use CDV with Cloudera Machine Learning, update your CML engine to the latest version, which includes fixes for the log4j2 security vulnerability in CML. For more information, see Release Notes for CDV in CML.