Since the advent of this issue, Teqworks has been consulting security partners and evaluating our and your systems for exposure to this vulnerability.

Teqworks internal systems do not use Apache log4j library. Our analysis thus far shows no components of our service are affected by this vulnerability. Our investigation is ongoing, and we will provide additional updates as they become available.

We are also closely monitoring the status of patches to be made available. We are already in contact with software manufacturers (e.g. Microsoft, Sage) to be ready to apply patches and take action per their instructions.

More information:

• https://logging.apache.org/log4j/2.x/security.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
• https://nvd.nist.gov/vuln/detail/CVE-2021-44228

As this issue develops, we will continue to update on progress and new information.