As widely reported this week, multiple vulnerabilities within the Apache Log4j tool have been identified – tracked as [CVE-2021-44228] and [CVE-2021-45046]. Log4j is a logging framework created by Apache and used widely across the internet.
The CMNTY team have conducted a thorough internal impact assessment and has completed verification that this issue does NOT affect CMNTY products or services.
We will continue to monitor the situation, including 3rd party services that CMNTY uses. Any concerns or queries get in touch on firstname.lastname@example.org.
More information on the vulnerabilities can be found here: