Apache Log4j Vulnerability - No impact to the Signifikant platform

On Friday, December 10th 2021, a vulnerability in the Apache Log4j library was detected by the National Institute for Standards and Technologies (NIST), potentially affecting systems running Apache Log4j - allowing an attacker to execute code on a remote server. More information can be read here:

• NIST: https://nvd.nist.gov/vuln/detail/CVE-2021-44228

• Apache: https://logging.apache.org/log4j/2.x/security.html

When we heard the report of the vulnerability, we were quite sure that this would not have an impact on the Signifikant platform since we do not use Apache nor Log4j. We double checked this and can confirm that the Signifikant platform is not vulnerable. Please contact Signifikant Support (support@signifikant.se) in case you have any questions.