Trimble: Statement Regarding Log4J Security Alert
#1
Exclamation 
SketchUp Team schrieb:On December 9, 2021, a vulnerability of Apache Log4j (a logging tool used in many Java based applications) was disclosed, which could allow remote unauthenticated attackers to execute code on vulnerable systems. The vulnerability is tracked as CVE2021-44228 5, and is also known as "Log4Shell".

When the announcement was made, immediate action was taken by us to ensure SketchUp’s infrastructure would be protected. Once that immediate action was taken, we conducted a thorough inventory of potentially vulnerable assets and applied mitigating controls that entirely remove the risk. Based on these actions, we believe that the vulnerability does not affect our products or services, including customer data.

• Quelle: Trimble SketchUp Community Forum
• heise Security: Log4j - News und Hintergründe zur Sicherheitslücke
Zitieren


Möglicherweise verwandte Themen…
Thema Verfasser Antworten Ansichten Letzter Beitrag
Exclamation Trimble IDentity: Umstellung Benutzer-Anmeldung SketchUp3D.de 0 1.937 14.01.2022 - 18:37
Letzter Beitrag: SketchUp3D.de
  Trimble Account -mehrere? rosketch 1 3.338 20.10.2020 - 11:46
Letzter Beitrag: SketchUp3D.de

Gehe zu:


Benutzer, die gerade dieses Thema anschauen: 1 Gast/Gäste