Log4j-1.2.15.jar files still present and EOL issues

Log4j-1.2.15.jar files still present and EOL issues

I'm still seeing a log4j-1.2.15.jar file in ManageEngine\AD360\lib in the folder.  There seems to be a dependency on as AD360 will not load without it in place. I have upgraded to build 4303 and this is still present. Qualys vulnerability scanning still flags it as this is still a vulnerability. Is there a workaround or a patch for this ?
            Related Products