Critical vulnerability in the Java library Log4j
Dear customers and partners,
on December 9th a critical vulnerability in the Apache Log4j library became known. We’d like to inform you about our security status concerning this vulnerability.
We immediately started analyzing the usage of the affected vulnerability and implemented the proposed workaround for all the external applications already on December 10th. We have not identified any execution of this vulnerability for our external applications. Currently, we are securing all our internal used applications against similar weak spots.