Problem

The Common Vulnerabilities and Exposures System recently reported in CVE-2021-44228 a severe vulnerability in Log4j. Since Datalogics uses Log4J in some of our products, we audited our products and services to determine which might be exposed to this vulnerability.


Productuses Log4Jexposes vulnerabilityNotes
Adobe Content ServerYesNoUses an older version that does not contain the vulnerability.
Adobe PDF ConverterNoNo
Adobe PDF Library (APDFL)NoNo
Adobe Reader Mobile SDK (RMSDK)NoNo
Datalogics PDF Utility APINoNo
DL ComposerNoNo
DL PagerNoNo
Flip2PDFNoNo
Forms ExtensionNoNo
PDF AlchemistNoNo
PDFCheckerNoNo
PDFOptimizerNoNo

PDF Java Toolkit (PDFJT)

YesNo

Only directly used by RE Lite and Sample apps, and neither of them enable JNDI.

Otherwise logging done through SL4J.

We provide more information for this product.

PDF2IMGNoNo
PDF2PrintNoNo
PDF Forms FlattenerNoNo
Adobe PDF Print Engine (APPE)NoNo

Related articles

Related articles appear here based on the labels you select. Click to edit the macro and add or change labels.

Related issues