Clockwise not susceptible to log4j exploit
ClockWise not susceptible to log4j exploit
Dear ClockWise user,
There has been media coverage this weekend about the java exploit CVE-2021-44228 applicable to systems using log4j. Web servers that are externally accessible and use this logging tool may be vulnerable to this Zero-Day exploit.
At ClockWise, like many other companies, we also spent the weekend investigating whether there are systems within the ClockWise network that are susceptible to this development. We do however not use any java-based systems for our external services and are therefor not affected by this exploit.
We have also made an indexation of the consequences that this exploit can have for the most important secondary processes and suppliers that are used within ClockWise. We have now heard from them that there is no danger or that adequate measures have been taken in advance.