TimeTrex Time and Attendance


https://forums.timetrex.com/

Is TimeTrex vulnerable to critical log4j exploit?

https://forums.timetrex.com/viewtopic.php?t=10124

Page 1 of 1

Is TimeTrex vulnerable to critical log4j exploit?

Posted: Sun Dec 12, 2021 9:47 pm
by KEW
Hello,

You would have probably heard of the very recent log4j exploit, that has a CVSS score of 10. TimeTrex uses the Apache Web server, so I was wondering whether or not TimeTrex was vulnerable to this exploit?

Thanks..!

Re: Is TimeTrex vulnerable to critical log4j exploit?

Posted: Mon Dec 13, 2021 8:47 am
by shaunw
Apache is a foundation that manages over 350 separate projects. Apache web server is one which TimeTrex does use as its web server, and Log4j is completely separate project for the Java programming language which TimeTrex does not use. Therefore vulnerabilities in Log4j do not affect TimeTrex whatsoever.

Re: Is TimeTrex vulnerable to critical log4j exploit?

Posted: Mon Dec 13, 2021 12:54 pm
by KEW
Many Thanks :)
All times are UTC-07:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited