Recently you may have read about a potential security issue in the Apache Log4j software. As we are deeply concerned with the safety and security of our software products, we have investigated this matter in depth and has reasonably established that we are not impacted by the Apache Log4j vulnerabilities identified as CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105.
CoreView doesn’t use Java in the codebase for the platform itself, we use Microsoft .NET and netcore, but we do run two third party services that use Java. Both of them have been patched/mitigated following vendors instructions.
CoreView is continuously monitoring the situation and will publish further updates as this situation unfolds. If you have any questions or concerns please do not hesitate to reach out to us at firstname.lastname@example.org