Skip to Content
Northwoods
Main Content

1 Minute Read | December 13, 2021

Titan CMS Statement About Log4j 2 and Its Impact On Our Software

Recently, warnings have been issued by several national cybersecurity agencies that a remote code execution flaw in Log4j 2 (CVE-2021-44228), which is a Java library for logging errors in various applications, was at severe risk of being exploited.

Based on the information provided by the National Vulnerability Database, which is managed by the National Institute of Standards and Technology, U.S. Department of Commerce, our team has determined that Titan CMS is not impacted by Log4j 2. Titan CMS does not use Java and does not run on Apache, which is the primary point of vulnerability for Log4j 2. Northwoods, which develops and manages Titan CMS, does not run Apache nor Log4j 2 libraries in our Microsoft Azure hosting environments.

However, we are monitoring the situation and will follow Microsoft’s recommendations related to patching any Microsoft system running Apache.

We will provide updates as needed.

If you have any questions, please don’t hesitate to contact us.

Share on Social Media

392583/Blog/Titan-CMS-Statement-About-Log4j-2-and-Its-Impact-On-Our-Software1
<p>Recently, warnings have been issued by several national cybersecurity agencies that a remote code execution flaw in Log4j 2 (CVE-2021-44228), which is a Java library for logging errors in various applications, was at severe risk of being exploited.</p>

<p>Based on the information provided by the <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-44228" linktype="3" target="_blank">National Vulnerability Database</a>, which is managed by the National Institute of Standards and Technology, U.S. Department of Commerce, our team has determined that Titan CMS is not impacted by Log4j 2. Titan CMS does not use Java and does not run on Apache, which is the primary point of vulnerability for Log4j 2. Northwoods, which develops and manages Titan CMS, does not run Apache nor Log4j 2 libraries in our Microsoft Azure hosting environments.</p>

<p>However, we are monitoring the situation and will follow <a href="https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021-44228-apache-log4j2/" linktype="3" target="_blank">Microsoft&rsquo;s recommendations</a> related to patching any Microsoft system running Apache.</p>

<p>We will provide updates as needed.</p>

<p>If you have any questions, please don&rsquo;t hesitate to <a href="https://titancms.com/Titan-CMS-2021/Contact-Us">contact us</a>.</p>
Titan CMS Team/Titan-CMS-20211/People/Titan-CMS-Team-Logo.jpgTitan CMS Statement About Log4j 2 and Its Impact On Our Software2021-12-13T15:30:26.163Our team has determined that Titan CMS is not impacted; however, we continue to monitor the situation.Add-In Type - NWS Data ModulesCategory - NWS Data ModulesCommittee - NWS Data ModulesDivision - NWS Data ModulesEvent Audience - NWS Data ModulesEvent Service - NWS Data ModulesEvent Type - NWS Data ModulesLocality - NWS Data ModulesModule - NWS Data ModulesNWS Data ModulesTopic - NWS Data ModulesNewsPackage Type - NWS Data ModulesPersonID - NWS Data ModulesTitan CMS TeamProductVersion - NWS Data ModulesRecorded Webinar TopicsRegion - NWS Data ModulesSite Display - NWS Data ModulesTitan CMSSkillLevel - NWS Data ModulesTopic - NWS Data ModulesVideoAudience - NWS Data ModulesVideoClassification - NWS Data ModulesVideoStatus - NWS Data Modules02021-12-13T15:45:59.94000