Honeywell’s Statement on Java Apache Log4j Logging Framework Vulnerability
December 14, 2021
Security is our top priority and we are committed to taking all appropriate measures to ensure the integrity of our products and services. We are aware of the potential critical unauthenticated RCE vulnerability (CVE-2021-44228) affecting the well-known Java logging package “log4j.” We are evaluating our products and services to determine whether or not they are affected by this vulnerability. If needed, we will provide our customers with any necessary corrective actions.