Logimat 2022
back to the overview

Log4j security vulnerability: Wanko customers are not affected

On December 09, 2021, a security vulnerability was discovered in the log4j framework. After a thorough analysis, it was determined that none of Wanko's products use log4j

Wanko | log4j | Java | Wanko-Suite | | Article by Wanko
Sicherheitslücke nicht betroffen

Dear customers,

on December 09, IT experts discovered a critical vulnerability in the framework log4j. This framework belongs to one of the commonly used Java logging libraries

The affected Log4j versions 2.0 to 2.14.1 are widespread. According to the BSI, it is not yet known in which products this library is used. Experts warn that not only online systems are at risk, but also applications such as a QR scanner or a contactless door lock if they use Java and Log4j.

Even standard Internet users can be indirectly affected if they use online applications that work with Log4j (web stores, online banking or discussion forums). The vulnerability must be closed by the respective operators, who must install the necessary security updates.

Vulnerability to the vulnerability depends on the Java version used.

After a thorough analysis, Wanko has determined that none of our own products use log4j.

Customers using the full version of Crystal Report Designer or Oracle SQL Developer are recommended to apply an appropriate update. The Crystal Report Runtime is not affected by log4j.

A list of affected products can be found here.

Kind regards

Your
WANKO Team

ArrowUp get to Top Wanko Logistik Glossar Icon Glossar Wanko Support Icon Support