17th Dec 21
UVS statement on the Log4J vulnerability
As many of you may be aware, a severe vulnerability has been found in a popular Java library Log4J.
The exploit has been named Log4Shell (CVE-2021-44228) and is affecting hundreds of services
around the world, including Amazon AWS and Apple iCloud. Our Technical Director, Phill Whitehead,
had this to say:
“We would like to assure our customers that there are no applications within our Lucidity range of
products, or any 3rd party integrations developed by us, which utilise the Log4J Java library. All
Lucidity products, controllers, or software are not affected by the Log4Shell vulnerability, and no
further action is required to secure your system from this issue.”
We are sure this is a worrying time for many of our customers, as a responsible supplier we will do
everything we can to ensure that no 3rd party product we offer is affected by this vulnerability. If any
3rd party products are affected, we will work with our suppliers to get a speedy resolution and
contact you in due course providing updates where available.
Share this article