Momentive statement on Log4j2 vulnerability
The Momentive Trust and Security team is aware of the Log4j2 vulnerability. We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems.
The Momentive Trust & Security team is aware of the Log4j2 vulnerability and are addressing the following CVEs (CVE-2021-4104, CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).
We are actively monitoring the situation and have addressed any impacted systems that may be vulnerable. At this time, we have not detected any successful exploit attempts on our systems. Should we become aware of any unauthorized access to customer data, we will notify the impacted customers right away.
How is Momentive responding?
- We’ve established an inventory of all applications and systems running Log4j, and patched, upgraded, or configured them to prevent and detect any malicious activity related to the vulnerability
- We are actively monitoring the situation and our systems and will take appropriate action to address any issues that arise
- We are working closely with third parties and vendors to ensure that they are addressing the issue
Should there be any important updates on this issue, we will update this post and our customers accordingly.
SEE SIMILAR STORIES IN ...
Read more articles by Momentive
Volunteer of the Quarter: Victoria Thorn
Victoria volunteers with the Calgary Drop-In Centre and Girl Guides of America, helping with dinner service and running programs for young girls.
Jul 10 • 2 min read
Read more
The C.H.O.I.C.E fund at SurveyMonkey: giving employees the flexibility they deserve
Employees can expense wellness costs, creative activities, office supplies, and more.
Jun 20 • 3 min read
Read more