Genesys Update on the Apache Log4j Vulnerability

Genesys, along with the vast majority of the technology industry, is aware of CVE-2021-44228, referred to as Apache Log4j vulnerability, in certain versions of the Java logging library. We are actively working to fully assess the impacts to Genesys products, but at this time, we are not seeing active exploitation of this vulnerability.

We have already implemented remediations where possible and are working to communicate any potential exploit paths with specific customers that may be impacted.

We know that Apache Log4j is a significant vulnerability and are committed to working closely with our customers and partners to determine potential impacts and deliver fixes or workarounds as quickly as possible. Our customers are our top priority, and we will provide updates as soon as more information becomes available.

Genesys customers can expect a Security Advisory shortly if there are any potential impacts. We encourage you to check back here for more updates.