Due to the recent information about the vulnerability of Apache’s Log4j, our software team has done extensive research and we are happy to report that NONE of our software uses log4j logging system, therefore our software is NOT vulnerable to exploitation.
What is Log4j?
Log4j is a very common Java logging library developed by the Apache Software Foundation. This component allows remote code execution, often from a context that is easily available to an attacker. This makes everyone employing Log4j a potential target for attacks.
The security risk with Log4j, also called CVE-2021-44228 or Log4Shell or LogJam, is being considered one of the most dangerous and most severe risks found in recent years. The vulnerability allows attackers to remotely abuse the rights of web servers, with potentially significant consequential damage. Many large organizations use this component (it affects all versions), making them a potential target
Why this post then?
We thought it was important to write this update so that Faqprime users could be reassured: Faqprime products DO NOT use the specific log4j component, so there are NO vulnerabilities involved.
