Apache Log4j2 Vulnerability
Kantata is aware of the recently disclosed remote code execution (RCE) zero-day Apache Log4j vulnerability CVE-2021-44228.
The good news is that Kantata does not leverage Log4j2 in the product nor has any dependencies on it. For this reason, Kantata does not believe that this vulnerability has an impact on our services at this time.
Kantata is proactively monitoring the issue and will continue to assess 3rd party vendors to ensure remediations are in place if applicable. At Kantata, we treat protection of our customers’ data as a top priority. If Kantata does become aware of unauthorized access to Customer Data, notification will be sent immediately without undue delay.
If you would like more information regarding the vulnerability, please review CVE-2021-44228.
Thank you for your continued trust you have placed in Kantata.