Banana Accounting is not affected by CVE-2021-44228 (Log4j)

News • 16/12/2021 •
In this article

The vulnerable version (as mentioned in CVE-2021-44228) or any other version, of the Apache log4j library is not used in our Banana Accounting software. Therefore, no action is required for Banana users due to the Log4j vulnerability.

 

No attack using this vulnerability has been detected in our systems, since all our services (website, ...) have been updated to exclude this type of exploit.