You are here

Theatre Manager Does Not Use Log4j (CVE-2021-44228)

Subscribe to Syndicate
Theatre Manager's server processes have never used Java in any way, shape or form. Nor do we use Apache web servers (Theatre Manager uses Nginx).

Arts Management investigated this vulnerability as soon as it was announced and there is nothing in our software solution that we supply to our venues that uses log4j.

For further reference, the NIST description of the log4j vulnerability

AMS Cloud Venues

For those on AMS Cloud, our intrusion detection tools provide additional mitigation against this vulnerability as a precursor to all theatre manager server processes (which, as mentioned, don't use java and are not vulnerable). This provides multiple layers of protection to your data.

Self Hosted Venues

Self hosted venues should not be affected, especially if they have not installed any other server processes that run Java.

Other reading material: