Log4j zero-day vulnerability CVE-2021-44228

Regarding CVE-2021-44228, the Remote Code Execution (RCE) vulnerability affecting Apache Log4j, we have confirmed that our products are not affected.

All versions of Ahsay products DO NOT contain the JNDILookup plugin. The logging feature has been disabled for Log4j Logger (set to OFF). Therefore, at the moment no immediate action is required.

This is Ahsay’s official notice on the vulnerability Ahsay Advisory - Log4j vulnerability (CVE-2021-44228) [Ahsay Wiki]