To whom it may concern: My IT department has been made aware of a potential vulnerability for applications developed on Java:
The Apache Software Foundation announced<https://logging.apache.org/log4j/2.x/security.html> a critical remote code execution vulnerability (CVE-2021-44228<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228> ) in Apache Log4J, a popular open source framework for logging in the Java programming language. I'd like to know if NetBeans is vulnerable to this exploit. Kind Regards, Kai Ramnath | Director, Credit Risk Methodologies | Enterprise Risk, Group Risk Management | Royal Bank of Canada | 647-968-3855 | [email protected]<mailto:[email protected]> _______________________________________________________________________ If you received this email in error, please advise the sender (by return email or otherwise) immediately. You have consented to receive the attached electronically at the above-noted email address; please retain a copy of this confirmation for future reference. Si vous recevez ce courriel par erreur, veuillez en aviser l'expéditeur immédiatement, par retour de courriel ou par un autre moyen. Vous avez accepté de recevoir le(s) document(s) ci-joint(s) par voie électronique à l'adresse courriel indiquée ci-dessus; veuillez conserver une copie de cette confirmation pour les fins de reference future.
