AndersB Posted December 13, 2021 Share Posted December 13, 2021 Hi Is Passwordstate vulnerable to "Log4Shell vulnerability (CVE-2021-44228)" in any way? Tom Bosley, mhelmers, FeSa and 2 others 5 Link to comment Share on other sites More sharing options...
mhelmers Posted December 13, 2021 Share Posted December 13, 2021 Here's a response from them on Reddit: tldr; While our policy is not to divulge information on the processes and systems we use we can advise we do not use directly, or indirectly via any contracted 3rd Party, the Log4j logging library. Tom Bosley and RomainL 2 Link to comment Share on other sites More sharing options...
FeSa Posted December 14, 2021 Share Posted December 14, 2021 Hi, will we get an official statement of clickstudios-team? Tom Bosley 1 Link to comment Share on other sites More sharing options...
support Posted December 14, 2021 Share Posted December 14, 2021 Hello FeSa, As this is not applicable to our software, there is no need for any official communications from us. Please simply refer to our social media channels instead. If it was applicable, we would contact all customers directly as a priority, and add communications to our web site as well. Regards Click Studios Link to comment Share on other sites More sharing options...
support Posted December 14, 2021 Share Posted December 14, 2021 We've also added a little more detail to the social media posts today - https://www.reddit.com/r/passwordstate/comments/rf7d62/log4j_zeroday_log4shell_vulnerability/ Regards Click Studios Tom Bosley 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now