Official statement from PlatformManager on Vulnerability in Apache Log4j, reference CVE-2021-44228 (also referred to as Log4Shell)
PlatformManager is aware of the recently published security vulnerabilities in Apache Log4j, with references CVE-2021-44228 and CVE-2021-45046.
(also referred to as Log4Shell).
When these vulnerabilities were published, PlatformManager immediately began to investigate if and how PlatformManager products would be impacted by this security risk.
Here’s what we know right now:
- We confirmed NONE of the PlatformManager modules or Software builds contains the vulnerable components.
- There is no need for Customers to install a new build. All currently available PlatformManager builds have been tested and do not contain the vulnerable components.
- Patches will be made available if and when this is necessary. For now, there is no need to deliver a patch.
If you have questions about this statement, please send them via email to info@PlatformManager.com