Overview
The Apache Log4j library is a popular, Java based logging utility used by many Java applications. In early December 2021, a critical vulnerability was discovered which allowed for Remote Code Execution (RCE). This vulnerability (CVE-2021-44228) was also given the nickname Log4Shell due to the fact that it allowed remote (shell) access to vulnerable servers.
Is my hosting with Conetix affected?
All shared hosting environments do not contain any Java applications, therefore there’s no vulnerable services.
Is my Virtual Private Server (VPS) affected?
Unless you’ve explicitly installed Java and Java applications, you don’t have any vulnerable services. All standard Conetix server instances remain 100% unaffected.
Are any other services with Conetix affected?
Conetix does have some Java based systems for internal usage, however these have either been patched or aren’t vulnerable to the attack.