log4j-cve-2021-44228 Exposure?

Product support
1

Hello,

Im being asked by clients to get confirmation that none of our vendors have exposure the Log4J zero day vulnerability. Ive confirmed that my containers are safe and dont leverage the library, can you confirm that the hostOS, Supervisor and Web App does or does not have a vulnerability and if it does, it has or will be addressed.

2

Hi @bkosniknh Yes we can confirm, none of our code is impacted (cloud and devices). We do however use other service providers such as AWS, so their exposure is out of our hands. AWS seems to have already implemented mitigations for these vulnerabilities in their systems.

4

Thank you so much, I appreciate you getting back to me.

1 Like