We wanted to address concerns that Atlona products may be affected by the recently discovered Apache Log4j security vulnerabilities. You have all probably read or heard about these in recent news articles or stories. Log4j is an open-source, Java-based logging framework commonly incorporated into Apache web servers. The security vulnerabilities were discovered in 1.x versions of the framework and addressed in version two hence the name Log4j 2. You can read more about it on the Apache.org website at this link https://logging.apache.org/log4j/2.x/.
Atlona engineering and development teams performed an extensive review of all our software and hardware products to determine if our products or customers were at risk. We are happy to inform you that none of our software products use the Apache logging framework in question (Velocity, WAVE, OMNI, OCS platforms). The remaining Atlona products are all circuit based and do not implement any technologies that have or could use a Java based logging framework.
If you have questions please reach out, we are happy to provide answers.