Apache Log4j Vulnerability | CVE-2021-44228

Following the public disclosure of the remote code execution vulnerability in the Apache Log4j logging framework, CVE-2021-44228, Clover took immediate action to mitigate any impact to our service.

The Clover Security Team has conducted a thorough investigation and we have addressed the issue on all impacted systems, following the recommended mitigation steps from Apache. In addition, our monitoring and alerting systems continually scan for this and other potential vulnerabilities. We continue to monitor the situation for new developments and will take all necessary action.