You have probably heard about the critical vulnerability found in the Apache Log4j library in the past few days, which is used by millions of Java applications for logging error messages. This vulnerability, CVE-2021-44228, is a Remote Code Execution (RCE) vulnerability that allows attackers to gain full access to a system.
The Thinkwise platform does not use Java and is therefore not subject to this vulnerability.
Thinkwise does advise its customers to check whether other applications or services use the affected library and to take appropriate steps to prevent abuse.
At Thinkwise, we closely monitor the security of all third party libraries and components used in our platform, and notify our customers if any vulnerabilities are reported.