Security note: log4j library is not used in IGMAS+
IGMAS+ is not affected by the recently disclosed vulnerability
Image by Gerd Altmann from Pixabay
The critical Log4Shell vulnerability has been recently disclosed in the widely used Java library log4j (see the reports by NVD and CVE).
log4j is a framework for logging application messages in Java. Within many open source and commercial software products, it has become a de facto standard over the years. According to the German Federal Office for Information Security (BSI), this vulnerability leads to an extremely critical threat situation.
It is very important to inform our users that this library has never been used in IGMAS+. Therefore, IGMAS+ is not affected and is not vulnerable.
