Copy link to clipboard
Copied
Hello Adobe Sign support team,
Greetings for the day!
In TR Highq Collaborate product we are using Adobe Sign API for eSignature.
You might be aware that recently in IT world everyone has faced Apache Log4j vulnerability - CVE-2021-44228 (https://nvd.nist.gov/vuln/detail/CVE-2021-44228) which has some serious security impacts like:
Log4j versions prior to 2.15.0 are subject to a remote code execution vulnerability via the LDAP JNDI parser.
Hence requesting you to check and confirm that in Adobe Sign if by any means we are using impacted version of Log4j or not, and if yes then what are the next steps as a remedy.
Please consider this mail as HIGH Priority and update us accordingly.
Thank You!
Copy link to clipboard
Copied
Hello,
Hope you are doing well and thank you for reaching out.
Please refer to the information provided on the following help document: https://helpx.adobe.com/security/products/log4j-2-advisory.html.
Hope the information helps.
Thanks,
Meenakshi