Forum Discussion

sdeevers's avatar
sdeevers
Contributor
4 years ago

log4j vulnerability and Ready API

Could you let us know what versions of Ready API are currently affected with the log4j vulnerability?

If we need to update we will, but would like to know if there is a specific version(s) impacted and we would need to update.

Thanks in advance !

  • Hi sdeevers

     

    SmartBear is aware of the recently disclosed security issue affecting the open-source Apache “Log4j2” utility (CVE-2021-44228). The Security team is actively working to mitigate our exposure and continue to provide enhanced monitoring of our platforms to safeguard information. Resources potentially affected by this vulnerability have been identified and our Information Technology and Information Security teams are working closely together to remediate any potential exposure in our platforms and environment. SmartBear is also actively communicating with our partners for due diligence in mitigation of this vulnerability related to embedded tools and services.

     

    Please check https://smartbear.com/security/cve-2021-44228/ for further updates.

  • D0UG's avatar
    D0UG
    Community Manager

    Hi sdeevers

     

    SmartBear is aware of the recently disclosed security issue affecting the open-source Apache “Log4j2” utility (CVE-2021-44228). The Security team is actively working to mitigate our exposure and continue to provide enhanced monitoring of our platforms to safeguard information. Resources potentially affected by this vulnerability have been identified and our Information Technology and Information Security teams are working closely together to remediate any potential exposure in our platforms and environment. SmartBear is also actively communicating with our partners for due diligence in mitigation of this vulnerability related to embedded tools and services.

     

    Please check https://smartbear.com/security/cve-2021-44228/ for further updates.