Log4j FAQ

Applies to:

  • Revu 20 & below

Overview

Log4j is an open-source Java component used industry-wide as a popular logging library. Critical vulnerabilities to the library have been reported, and can be found under CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105.

Are any Bluebeam Products affected by this vulnerability?

At this time, our investigation has found that no Bluebeam products are at risk to the Apache Log4j (Log4Shell) vulnerability. Only one internal service was found to have Log4J running, which was upgraded immediately out of precaution. This service, however, was not found to be vulnerable to the stated exploit.

We will continue to monitor the situation but no action need be taken by Bluebeam users at this time.

Announcements

Revu 2017 & Below

Revu 2018

Revu 2019

Revu 20

Studio

System & Environment

At this time, our investigation has found that no Bluebeam products are at risk to the Apache Log4j (Log4Shell) vulnerability. Only one internal service was found to have Log4J running, which was upgraded immediately out of precaution. This service, however, was not found to be vulnerable to the stated exploit.

Related Articles