OMNITRACKER is not affected by the Java vulnerability “Log4Shell” (CVE-2021-44228)

Voit, Stefan | 14.12.2021
Kachel Log4J 01 1

On 11/12/2021, the German Federal Office for Information Security (BSI) identified a security vulnerability in Java®-based applications and declared an extremely critical threat level “Warnstufe Rot = Warning Level Red”.

OMNITRACKER is not a Java-based application. An exploitation of the vulnerability listed in CVE-2021-44228 in connection with the log4j library is excluded with the OMNITRACKER standard installation according to current knowledge.

OMNINET immediately coordinated with all vendors of third-party components used in the OMNITRACKER platform. The result is reassuring: None of the components is affected by the security vulnerability.

Of course, we are still in contact with the vendors and manufacturers of third-party products.

If you—as a customer—have any questions regarding this issue in relation to the OMNITRACKER business process platform, please contact our support team.