Response to the Log4j vulnerability

We have been monitoring the ongoing situation regarding the recently discovered Log4j vulnerability, since the exploit was made public on 09/12/2021.
Apache Log4j is a Java-based logging framework. On December 9, a remote code execution vulnerability was identified, which allows an attacker to remotely execute code on a server containing a vulnerable version of Log4j.

We have performed a security risk assessment on our infrastructure, servers and applications and believe that our services are not affected and cannot be exploited by this vulnerability.

Posted in Vulnerabilities