Overview

Log4j is an open-source Java component used industry-wide as a popular logging library. Critical vulnerabilities to the library have been reported, and can be found under CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105.

Are any Bluebeam Products affected by this vulnerability?

At this time, our investigation has found that no Bluebeam products are at risk to the Apache Log4j (Log4Shell) vulnerability. Only one internal service was found to have Log4J running, which was upgraded immediately out of precaution. This service, however, was not found to be vulnerable to the stated exploit.

We will continue to monitor the situation but no action need be taken by Bluebeam users at this time.

Announcements

Revu 2017 & Below

Revu 2018

Revu 2019

Revu 20

Revu 21

Studio

System & Environment