Version

All Argent Products — All Versions

Date

Wednesday, 15 December 2021

Summary

This article describes security concern on the Log4j vulnerability and Argent is safe from the vulnerability.

Technical Background

Friday, 10 December 2021 — CERT New Zealand announced a newly discovered zero-day vulnerability in the widely used Java logging library Apache Log4j is easy to exploit and enables attackers to gain full control of affected servers

Source: https://www.cert.govt.nz/it-specialists/advisories/log4j-rce-0-day-actively-exploited/

Tracked as CVE-2021-44228, the vulnerability is classified as severe and allows unauthenticated remote code execution as the user running the application utilizes the Java logging library.

Source: https://www.zdnet.com/article/security-warning-new-zero-day-in-the-log4j-java-library-is-already-being-exploited/

Argent is SAFE from the Apache Log4j vulnerability, because Argent products DO NOT utilize Apache logging service, nor Java logging framework.

Customer running Argent server sharing with other applications is highly recommended to cross check with respective software vendors.

Resolution

Contact Argent Free 24/ 7 support via https://InstantHelp.Argent.com