Forum Discussion

lisadonlan's avatar
lisadonlan
New Member
4 years ago

LOG4J Vulnerability

Has the LogMeIn Team done analysis and mitigated any risk from the LOG4J Vulnerability ? Are there any patches or updates that we need to be aware of?
  • AshC's avatar
    AshC
    4 years ago

    Thank you for your patience.

    After a full review we can confirm that LogMeIn Central is not affected by the Log4j vulnerability.

     

    On Friday, December 10th, a zero-day vulnerability affecting a widely utilized open-source logging tool that is part of Apache Logging Services impacted a meaningful subset of the software industry.  The security of our services and customer data is a top priority for LogMeIn.  Upon becoming aware of the vulnerability, LogMeIn investigated and deployed patches where necessary, in order to ensure that our customers and users may continue to safely and securely utilize our services.  We continue to monitor for vulnerabilities and respond should they arise to keep our software and customers safe and secure

AshC's avatar
AshC
Retired GoTo Contributor

lisadonlan  

On Friday, December 10th, a zero-day vulnerability affecting a widely utilized open-source logging tool that is part of Apache Logging Services impacted a meaningful subset of the software industry. The security of our services and customer data is a top priority for LogMeIn and we are taking this matter very seriously. Upon becoming aware of the vulnerability, LogMeIn initiated an investigation to determine if any further action is required to mitigate against the vulnerability. Additionally, we continue to monitor for the latest information regarding this issue with Apache to keep our software and customers safe and secure.   

Kris__ITIT's avatar
Kris__ITIT
New Contributor
4 years ago

Can we have an update on this.  Urgently needed