Log4j vulnerabilities update

Posted at Dec 15, 12:00h in cybersecurity Erin Osborne, Marketing Categories: cybersecurity, data-security, infosec

A number of vulnerabilities have been recently identified, known collectively as Log4shell. 

Macrium software and services are not impacted.

Log4j, the component impacted, forms part of Apache's Java platform.

The list below are the ones currently reported, but this is a rapidly evolving situation so more may be reported in time.

https://nvd.nist.gov/vuln/detail/CVE-2021-4104

https://nvd.nist.gov/vuln/detail/CVE-2021-44228

https://nvd.nist.gov/vuln/detail/CVE-2021-45046

A summary is posted here.

https://www.kb.cert.org/vuls/id/930724

Note our vendor page is slightly out of date ... the CERT/CC team is rather busy at this time.

Which Macrium software and services are impacted?

None. 

Neither Log4j, or any part of Apache's java platform, form part of the Macrium stack, this class of vulnerability poses no risk for anyone using our software and services.

Last updated: 2021-12-15 16:00 UTC


Previous Post

Macrium in 2021: A year in review

Next Post

Trustpilot and Macrium