DIgSILENT statement: log4j (CVE-2021-44228) vulnerability
This article was released in response to the recent CVE-2021-44228 aka Log4Shell vulnerability.
According to our current knowledge, our products are concerned as follows:
PowerFactory – all versions: not affected
Log4j is not used in this product
StationWare – all versions: not affected
Log4j is not used in this product
Monitoring Systems – known issue for firmware 1.3.0.0 and newer versions
Firmware update 1.4.0.2 has been made available to fixed a possible exploit (CVE-2021-44228) by updating log4j libraries to newest release (2.15.0).
Please refer to our Download Area for updated version.