Language

Log4j Vulnerability & Impact on Code Blue Products

On December 9th, 2021, researchers published an exploit code for a critical vulnerability in Apache Log4j. Download the PDF of our official statement here.

Risk Details

The vulnerability, identified as CVE-2021-44228, allows for unauthorized malicious users to execute code remotely using Apache Log4j2 library.

This vulnerability affects all Log4j2 version between 2.0 and 2.14.1 and has been categorized as a critical (10.0) vulnerability.

Affected Products

Product Version Affected? Notes
ToolVox All No
IP1500, IP2500, IP5000 All No
Centry, LS1000, LS2000 All No
Fusion Connect Beta No
Fusion Monitor Beta Yes Update to be applied to official release.

Please direct any questions or concerns to our Technical Support team at technicalsupport@codeblue.com or 616-327-2593.