Hi, I've looked into the issue, and luckily it doesn't seem like we're using the library that's being affected by the JdniLookup class (log4j-core, versions 2.0 to 2.4.1).
Thanks, [image: image.png] Wonook 2021년 12월 12일 (일) 오후 5:04, Byung-Gon Chun <bgc...@gmail.com>님이 작성: > Hi Nemoers, > > If we have dependency on log4j, we should update it ASAP. > > https://www.wired.com/story/log4j-flaw-hacking-internet/ > https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce > > -Gon > > -- > Byung-Gon Chun >
