TrackVia Security | Apache Log4j Library Vulnerability
By now you’ve likely heard or read news about the widespread vulnerability found in the Apache Log4j library, used by hundreds of thousands of enterprise applications online, including TrackVia. If not, you can read about it more here: https://www.lunasec.io/docs/blog/log4j-zero-day/.
Our engineering and security teams have completed an initial assessment of our technology and infrastructure and determined that TrackVia is at low risk from this vulnerability. None of the Apache log4j library instances used by TrackVia have the extensions required to execute any known attack vector.
As always, TrackVia takes the security and reliability of our system, and your applications and data, very seriously. As added precautions, TrackVia is conducting a more exhaustive evaluation of our infrastructure. This will include evaluating our third-party applications and services for potential log4j use and required remediation. We will also continue to monitor threat intelligence sources for new information.
Please rest assured knowing that your TrackVia applications and data remain secure.