Forum Discussion

josh42's avatar
josh42
Community Hero
3 years ago

log4j vulnerability CVE-2021-44228 in Zephyr Scale

Hey guys,

 

apart from the info, that Atlassian released, is there any info on the log4j vulnerability CVE-2021-44228 affecting Zephyr Scale (Server)?

https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html

 

Tagging some SmartBear folks: vpelizza vinniew ebarbera jfelix 

 

Cheers

Josh

  • Hi josh42,

     

    SmartBear is aware of the recently disclosed security issue affecting the open-source Apache “Log4j2” utility (CVE-2021-44228). The Security team is actively working to mitigate our exposure and continue to provide enhanced monitoring of our platforms to safeguard information. Resources potentially affected by this vulnerability have been identified and our Information Technology and Information Security teams are working closely together to remediate any potential exposure in our platforms and environment.

     

    Please check https://smartbear.com/security/cve-2021-44228/ for further updates.

  • jfelix's avatar
    jfelix
    SmartBear Alumni (Retired)

    Hi josh42!

     

    We're aware of this issue and the team is currently checking it. 

    We'll provide an update on this as soon as we finish the investigation.

     

    Thank you!

  • D0UG's avatar
    D0UG
    Community Manager

    Hi josh42,

     

    SmartBear is aware of the recently disclosed security issue affecting the open-source Apache “Log4j2” utility (CVE-2021-44228). The Security team is actively working to mitigate our exposure and continue to provide enhanced monitoring of our platforms to safeguard information. Resources potentially affected by this vulnerability have been identified and our Information Technology and Information Security teams are working closely together to remediate any potential exposure in our platforms and environment.

     

    Please check https://smartbear.com/security/cve-2021-44228/ for further updates.