Momentive statement on Log4j2 vulnerability
The Momentive Trust and Security team is aware of the Log4j2 vulnerability. We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems.
The Momentive Trust & Security team is aware of the Log4j2 vulnerability and are addressing the following CVEs (CVE-2021-4104, CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).
We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems. Should we become aware of any unauthorized access to customer data, we will notify the impacted customers right away.
How is Momentive responding?
- We’ve established an inventory of all applications and systems running Log4j, and patched, upgraded, or configured them to prevent and detect any malicious activity related to the vulnerability
- We are actively monitoring the situation and our systems and will take appropriate action to address any issues that arise
- We are working closely with third parties and vendors to ensure that they are addressing the issue
Should there be any important updates on this issue, we will update this post and our customers accordingly.
SEE SIMILAR STORIES IN ...