Please sign in or register to access software information via the Iress Community.

Community

Hello there!

More great content is available for our registered community members, log in now to take a look.
OR
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Iress Notifications
Key updates from across Iress
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Log4j remote code vulnerability (CVE-2021-44228; CVE-2021-45046; and CVE-2021-45105)

kelly.fisk
Iress People
Iress People

on ‎13-12-2021 08:51 AM - last edited on ‎10-03-2022 05:55 PM by Community Manager

Log4j remote code vulnerability (CVE-2021-44228; CVE-2021-45046; and CVE-2021-45105)

This page was last updated on Tuesday 21 December at 9.45pm AEST

Since first detecting the potential vulnerability in the widely-used Java logging library Apache Log4j, Iress’ security and engineering teams have been comprehensively reviewing all aspects of our software. 

Overall, Iress’ software has been deemed safe from the vulnerability. In some limited and specific cases use of the impacted library has been identified and these instances have been remediated. We have also reviewed Iress' use of third party software and are implementing the recommended changes from those external vendors.

Importantly, our testing has not detected any compromisation of our technology, systems and data.

For information on specific products, please contact your Iress account manager.

0 Kudos

Iress is a technology company providing software to the financial services industry.
Our software is used by more than 9,000 businesses and 500,000 users globally.

Resources

Trust

About

Social

© Iress 2024. All rights reserved