On December 9th, 2021, researchers published an exploit code for a critical vulnerability in Apache Log4j. Download the PDF of our official statement here.
Risk Details
The vulnerability, identified as CVE-2021-44228, allows for unauthorized malicious users to execute code remotely using Apache Log4j2 library.
This vulnerability affects all Log4j2 version between 2.0 and 2.14.1 and has been categorized as a critical (10.0) vulnerability.
Affected Products
| Product | Version | Affected? | Notes |
|---|---|---|---|
| ToolVox | All | No | |
| IP1500, IP2500, IP5000 | All | No | |
| Centry, LS1000, LS2000 | All | No | |
| Fusion Connect | Beta | No | |
| Fusion Monitor | Beta | Yes | Update to be applied to official release. |
Please direct any questions or concerns to our Technical Support team at technicalsupport@codeblue.com or 616-327-2593.