• Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
    Dedicated community for Japanese speakers
  • 한국 커뮤니티
    Dedicated community for Korean speakers
Exit
0

Is Adobe Sign affected by the Apache Log4j vulnerability?

New Here ,
Dec 13, 2021 Dec 13, 2021

Copy link to clipboard

Copied

We have a cloud based application that utilizes Adobe Sign for digital signatures. Is Adobe Sign affected by the Apache Log4j vulnerability in any way? Does Adobe Sign use Apache?

 

Thanks,

 

Carlo

TOPICS
Manage security and compliance

Views

491

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines

correct answers 2 Correct answers

New Here , Dec 14, 2021 Dec 14, 2021

Hey,

 

This is what I got from support - 

 

I understand you want to know about the log4j vulnerability which is on going. I would like to inform you that Adobe is aware of this Apache log4j library vulnerability. This library is widely used in many applications and services across the industry, including Adobe.
The investigation is ongoing but, to date, Adobe has discovered no indication to suggest customer data has been impacted as a result of this issue.
Adobe is investigating the potential impact

...

Votes

Translate

Translate
Adobe Employee , Dec 17, 2021 Dec 17, 2021

Hello,

 

Hope you are doing well and thank you for reaching out.

 

Please refer to the information provided on the following help document: https://helpx.adobe.com/security/products/log4j-2-advisory.html

Hope the information helps.

 

Thanks,

Meenakshi 

Votes

Translate

Translate
New Here ,
Dec 14, 2021 Dec 14, 2021

Copy link to clipboard

Copied

Hey,

 

This is what I got from support - 

 

I understand you want to know about the log4j vulnerability which is on going. I would like to inform you that Adobe is aware of this Apache log4j library vulnerability. This library is widely used in many applications and services across the industry, including Adobe.
The investigation is ongoing but, to date, Adobe has discovered no indication to suggest customer data has been impacted as a result of this issue.
Adobe is investigating the potential impact and is taking action including updating affected systems to the latest versions of Apache log4j recommended by the Apache Software Foundation.

However, Adobe Sign is patched . “Patched” means the product/service uses the Apache log4j library but has been updated to the latest version that is not vulnerable.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
New Here ,
Dec 14, 2021 Dec 14, 2021

Copy link to clipboard

Copied

Thank you!

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Adobe Employee ,
Dec 17, 2021 Dec 17, 2021

Copy link to clipboard

Copied

LATEST

Hello,

 

Hope you are doing well and thank you for reaching out.

 

Please refer to the information provided on the following help document: https://helpx.adobe.com/security/products/log4j-2-advisory.html

Hope the information helps.

 

Thanks,

Meenakshi 

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines