You may be concerned about the vulnerability found in Apache Log4j 2, but
In short: No. MadKudu does not utilize log4j, nor any software impacted by this vulnerability.
In more details:
On December 9, 2021, a vulnerability allowing attackers to execute arbitrary code on vulnerable systems was identified in Apache Log4j 2.
To our knowledge, this vulnerability only affects Java-based applications, while MadKudu's application uses Node.js/Python only and does not utilize Log4j. Our third-party services are not impacted either. Our security team has reviewed our systems, dependencies, and vendors and at this time, we do not have any reason to believe that MadKudu nor any related systems are impacted by this vulnerability.
We continue to monitor new information to determine any risk to our systems and will inform any relevant party of any new risk identified. If you have any questions or concerns, please contact support@madkudu.com.
Comments
0 comments
Please sign in to leave a comment.