Security Update for Log4j Vulnerability

The Pica8 Security Assurance team is evaluating the Log4j Java library remote code execute (RCE) vulnerability CVE-2021-44228 known as Log4Shell.

At this time, there are no known scenarios that enable successful exploitation of the vulnerability in PicOS, AmpCon, or any other Pica8 products. None of the Pica8 products use Apache and Java libraries for system logging.