Log4j Vulnerability Bulletin

A vulnerability in Apache Log4j, a widely used logging package for Java has been found. The vulnerability, which can allow an attacker to execute arbitrary code by sending crafted log messages, has been identified as CVE-2021-44228 and given the name Log4Shell.

Affected Products

DMT Solutions Global Corporation (d/b/a BlueCrest) is investigating its product line to determine which products may be affected by this vulnerability. As the investigation progresses, BlueCrest will update this advisory with information about affected products.

Any product not listed in the Vulnerable Products section of this advisory is to be considered not vulnerable. Because this is an ongoing investigation, be aware that products that are currently considered not vulnerable may subsequently be considered vulnerable as additional information becomes available.

Review the latest version of the advisory. 

To access additional information and/or to request service support, please navigate to https://bluecrestinc.microsoftcrmportals.com/en-US/SignIn and follow the “How to create a BlueCrest Service Support Case” instructions.