Many of our users will have seen the recent news about ongoing problems with the Zero-Day attack which exploits vulnerabilities in the Apache Log4j library - CVE-2021-44228.
The core Digital.ai Application Management Portal does not use Log4J and is not impacted by CVE-2021-44228. Several supporting systems were vulnerable to the Log4J exploit and have since been fixed using vendor-supplied patches. We are continuing to monitor the situation and will update this note when required.
No customer changes are required to fix or mitigate CVE-2021-44228.
To view Log4J notices for other Digital.ai products, please see Log4J Vulnerability to Zero Day Exploit and Digital.ai.