Status of Response to Apache Log4j Vulnerability (CVE-2021-44228)

1.0meviy Europe - Blog - MISUMIhttps://de.meviy.misumi-ec.com/info/en/Status of Response to Apache Log4j Vulnerability (CVE-2021-44228) | meviy Europe - Blog - MISUMIrich600338<blockquote class="wp-embedded-content" data-secret="BYZwX2CNsB"><a href="https://de.meviy.misumi-ec.com/info/en/service-release-en/19643/">Status of Response to Apache Log4j Vulnerability (CVE-2021-44228)</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://de.meviy.misumi-ec.com/info/en/service-release-en/19643/embed/#?secret=BYZwX2CNsB" width="600" height="338" title="“Status of Response to Apache Log4j Vulnerability (CVE-2021-44228)” — meviy Europe - Blog - MISUMI" data-secret="BYZwX2CNsB" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script type="text/javascript"> /* <![CDATA[ */ /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); //# sourceURL=https://de.meviy.misumi-ec.com/info/wp-includes/js/wp-embed.min.js /* ]]> */ </script> We would like to inform you of the status of our investigation and response to the vulnerability of Apache Log4j*, which was released on December 9, 2021. For the service meviy all vulnerabilities related to the Log4j vulnerability have been addressed! Investigation information and countermeasures: • The meviy server application does not use the targeted library • As a countermeasure, WAF rules to block attacks against the log4j vulnerability were applied on December 13 • Some middleware that does not perform external communication uses log4j, and an update to the relevant middleware was implemented on December 21 We will continue to collect information on this vulnerability and implement countermeasures as […]