This page provides information related to the recently published remote code execution (RCE) vulnerability affecting Log4j:
Atlassian host products
Refer to https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html for details.
Refer to https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html for details.
Not affected beyond the Atlassian host productAll Utoolity Data Center and Server apps use the SLF4J facade as provided by the respective Atlassian host product via OSGi and do not introduce Log4j on their own. They would thus only be indirectly affected if the Atlassian host product uses a vulnerable version of Log4j – this does not seem to be the case by default, refer to https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html for details. |
Not affectedAll Utoolity Cloud apps do not use Log4j and are thus not affected. |