Autonomic and Log4j (Log4Shell)

Recently, an exploit in a widely used Java logging library, log4j, was revealed. This vulnerability is widely referred to as Log4Shell. Details about the vulnerability can be found here.

 

No Autonomic products or software are affected by this vulnerability, including any version of MMS firmware or any version of the Media Synchronization Tool. The firmware is not written in Java. The Media Synchronization Tool is written in Java but uses a version of log4j outside the vulnerable range of library versions. None of our cloud platforms use Java at all.

 

If you have additional questions, please don't hesitate to reach out to us via phone at +1 914 598 1647 or via email at support@autonomic-controls.com