log4j vulnerability and Ready API
Could you let us know what versions of Ready API are currently affected with the log4j vulnerability?
If we need to update we will, but would like to know if there is a specific version(s) impacted and we would need to update.
Thanks in advance !
Hi sdeevers,
SmartBear is aware of the recently disclosed security issue affecting the open-source Apache “Log4j2” utility (CVE-2021-44228). The Security team is actively working to mitigate our exposure and continue to provide enhanced monitoring of our platforms to safeguard information. Resources potentially affected by this vulnerability have been identified and our Information Technology and Information Security teams are working closely together to remediate any potential exposure in our platforms and environment. SmartBear is also actively communicating with our partners for due diligence in mitigation of this vulnerability related to embedded tools and services.
Please check https://smartbear.com/security/cve-2021-44228/ for further updates.
