[Log4j Advisory] AD360 removes Log4j dependency in build 4302

[Log4j Advisory] AD360 removes Log4j dependency in build 4302


Hello Everybody!

Due to Apache Log4j library's security vulnerability (CVE-2021-44228), we have removed Log4j dependency in AD360's latest build, 4302.

Issue fix:
  • Log4j dependency in AD360 has been removed to ensure security.

Is AD360 affected by Log4j CVE-2021-44228 vulnerability?
CVE-2021-44228 refers to a remote code execution vulnerability found in Apache Log4j versions 2.0-beta9 to 2.15. Since AD360 uses an older version of Log4j, it is not affected by this issue. Click here to know more about this vulnerability.

What is the severity of this issue?
This vulnerability is a critical issue.

Why should I update to build 4302?
Although AD360 is not affected by this issue, we strongly recommend our customers to update to our latest build, 4302, to remove Log4j dependency.


Regards,
AD360 Team
Toll Free: +1-888-720-9500
Direct: +1-408-916-9890