Knowledge Base

Statement on Log4Shell (CVE-2021-44228)

Appfigures is aware of CVE-2021-44228, a vulnerability in a popular Java library (also called Log4Shell).

Immediately following the announcement, our teams have worked to evaluate our infrastructure and can confirm that Appfigures isn't impacted by this vulnerability.

The teams identified one internal application that was using a version of the library that isn't impacted.

This application has never been accessible from the public internet, and log analysis shows no unauthorized access.

If you have any questions don't hesitate to contact us directly.