December 14, 2021 - No Clumio Exposure to Apache Log4j2 Vulnerability (CVE-2021-44228)

This Clumio security alert address the impact of the CVE-2021-44228 zero-day vulnerability identified on December 9, 2021.

The Clumio platform does not utilize Log4j as part of our production environment, our Clumio Cloud Connector virtual machines, or MSSQL Edge Connector. Clumio Security and Support teams are actively monitoring this issue should any further response be required.

Clumio customers can access the latest incident announcement and alerts via the Service Notifications section of the customer Help Center. Please note that login credentials are required for the Help Center.

To be notified via email about new announcements, please use the Follow button on the Security Announcements page.

For any additional questions, please reach out to support@clumio.com