OMNITRACKER is not affected by the Java vulnerability “Log4Shell” (CVE-2021-44228)
On 11/12/2021, the German Federal Office for Information Security (BSI) identified a security vulnerability in Java®-based applications and declared an extremely critical threat level “Warnstufe Rot = Warning Level Red”.
OMNITRACKER is not a Java-based application. An exploitation of the vulnerability listed in CVE-2021-44228 in connection with the log4j library is excluded with the OMNITRACKER standard installation according to current knowledge.
OMNINET immediately coordinated with all vendors of third-party components used in the OMNITRACKER platform. The result is reassuring: None of the components is affected by the security vulnerability.
Of course, we are still in contact with the vendors and manufacturers of third-party products.
If you—as a customer—have any questions regarding this issue in relation to the OMNITRACKER business process platform, please contact our support team.