Copy link to clipboard
Copied
We have a cloud based application that utilizes Adobe Sign for digital signatures. Is Adobe Sign affected by the Apache Log4j vulnerability in any way? Does Adobe Sign use Apache?
Thanks,
Carlo
Hey,
This is what I got from support -
I understand you want to know about the log4j vulnerability which is on going. I would like to inform you that Adobe is aware of this Apache log4j library vulnerability. This library is widely used in many applications and services across the industry, including Adobe.
The investigation is ongoing but, to date, Adobe has discovered no indication to suggest customer data has been impacted as a result of this issue.
Adobe is investigating the potential impact
Hello,
Hope you are doing well and thank you for reaching out.
Please refer to the information provided on the following help document: https://helpx.adobe.com/security/products/log4j-2-advisory.html.
Hope the information helps.
Thanks,
Meenakshi
Copy link to clipboard
Copied
Hey,
This is what I got from support -
I understand you want to know about the log4j vulnerability which is on going. I would like to inform you that Adobe is aware of this Apache log4j library vulnerability. This library is widely used in many applications and services across the industry, including Adobe.
The investigation is ongoing but, to date, Adobe has discovered no indication to suggest customer data has been impacted as a result of this issue.
Adobe is investigating the potential impact and is taking action including updating affected systems to the latest versions of Apache log4j recommended by the Apache Software Foundation.
However, Adobe Sign is patched . “Patched” means the product/service uses the Apache log4j library but has been updated to the latest version that is not vulnerable.
Copy link to clipboard
Copied
Thank you!
Copy link to clipboard
Copied
Hello,
Hope you are doing well and thank you for reaching out.
Please refer to the information provided on the following help document: https://helpx.adobe.com/security/products/log4j-2-advisory.html.
Hope the information helps.
Thanks,
Meenakshi