We were just made aware of a severe vulnerability in the Java logging library Apache Log4j.
See the following article for more information:
Is this library present and being used by the Crystal Reports runtime engine for .NET SDK (using v184.108.40.20605)? If so, what measures can we take to mitigate this vulnerability? Is SAP planning to issue some kind of patch?
Thanks in advance.