Momentive statement on Log4j2 vulnerability
The Momentive Trust and Security team is aware of the Log4j2 vulnerability. We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems.
The Momentive Trust & Security team is aware of the Log4j2 vulnerability and are addressing the following CVEs (CVE-2021-4104, CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).
We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems. Should we become aware of any unauthorized access to customer data, we will notify the impacted customers right away.
How is Momentive responding?
- We’ve established an inventory of all applications and systems running Log4j, and patched, upgraded, or configured them to prevent and detect any malicious activity related to the vulnerability
- We are actively monitoring the situation and our systems and will take appropriate action to address any issues that arise
- We are working closely with third parties and vendors to ensure that they are addressing the issue
Should there be any important updates on this issue, we will update this post and our customers accordingly.
SEE SIMILAR STORIES IN ...
Read more articles by Momentive
Employee stories: Erica Tjader, design and research leader
Technical Recruiter Karissa Kennedy interviews VP of Research and Design Erica Tjader about supporting internal mobility and helping her team grow their careers.
Mar 28 • 5 min read
Read more
How I reflect every year on MLK day about what it means to be a leader
Chief Diversity and Social Impact Officer Antoine Andrews reflects on the messages about leadership in Dr. Martin Luther King Jr.'s final speech.
Jan 12 • 6 min read
Read more