Wildix's response to the reported Log4j vulnerability
Link for sharing: https://confluence.wildix.com/x/RgQkBg
Based on recent public disclosure, our security team has researched reported vulnerabilities (CVE-2021-44228, CVE-2021-44228) within an open-source Java Library called Log4j.
After performing analysis and testing, we can confirm that the Wildix PBX and related services are not subject to such attacks.
However, as a precaution and as part of our dedication to maintaining a fully secure-by-design architecture, we have deployed an additional update to patch this potential vulnerability. The update is related to the server-side only, no manual actions from you are required.
Security is a top priority at Wildix. We make sure that every product and every version that we release, corresponds to the latest security standards.