The new log4j vulnerability is a pretty serious security issue that has had wide-ranging impacts. Just to cut to the chase, ActiveDEMAND is not affected by log4j because we don’t use log4j. We examine newly announced vulnerabilities to determine if we have to take any action. Normally, we don’t comment on vulnerabilities that don’t apply to us but many ActiveDEMAND users were asking us about this one because of how widespread the log4j vulnerability is.

Want to learn more about log4j and its impacts? Check out this post by Google.