2021-12-13
Intra2net systems not affected by log4j vulnerability
On December 10, 2021, an advisory was announced on a security vulnerability rated critical, named Log4J-RCE (CVE-2021-44248). Put simply, an attacker can use the discovered vulnerability to cause the target system to retrieve and execute code from a remote location.
Intra2net has immediately examined all products and found that the log4j library is not used anywhere. Therefore, Intra2net systems are not affected. Intra2net's infrastructure for updates, licenses, etc. is also not affected.
No further steps are required for our customers.