the BSI issued a security warning last weekend. The library log4j for Java in version 2.0 – 2.14 has a security hole and should therefore not be used.
More information about the security hole can be found here: https://nvd.nist.gov/vuln/detail/CVE-2021-44228.
We are in close exchange with all developers regarding the vulnerability, which leads to an immediate increase of the IT threat level. After extensive review we can give the all-clear here. The Impakt software packages are based on C++ and are therefore not affected by this vulnerability. Our Helper Apps in our other products are also not affected by this, even though they were partially written in Java – as the corresponding library was not used.