- Revu 21 & below
Log4j is an open-source Java component used industry-wide as a popular logging library. Critical vulnerabilities to the library have been reported, and can be found under CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105.
Are any Bluebeam Products affected by this vulnerability?
At this time, our investigation has found that no Bluebeam products are at risk to the Apache Log4j (Log4Shell) vulnerability. Only one internal service was found to have Log4J running, which was upgraded immediately out of precaution. This service, however, was not found to be vulnerable to the stated exploit.
We will continue to monitor the situation but no action need be taken by Bluebeam users at this time.
Revu 2017 & Below
System & Environment