Advisory: No Cormant Systems Use log4j

The Cormant division of BGIS is aware of the Apache log4j vulnerability CVE-2021-44228.

Cormant has reviewed its delivered software solutions and confirmed that Cormant solutions do not use log4j. Cormant has also analyzed all tools used to develop, test and deliver Cormant solutions and has confirmed those tools are not subject to the reported vulnerability.

Cormant software solutions are Cormant-CS DCIM and Cormant-CS.  The advisory includes all versions of the software currently supported and prior versions that may still be in customer use.

If you have any additional questions or concerns, you may contact us at