KB 133 - Log4j Vulnerability Not Applicable to PowerConnect Products

Description

Recently, a remote code execution vulnerability was discovered in the Java logging library Log4J. It impacts Log4J 2 versions 2.0 to 2.1.14.1. The vulnerability is designated as https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228 (a.k.a. Log4Shell) with the highest severity rating of 10.0.

The PowerConnect Java and Cloud products do not use or ship with the Log4j logging library.