Utilization of the Apache “Log4j2” library (CVE-2021-44228) at When I Work
Scheduled Maintenance Report for When I Work
The scheduled maintenance has been completed.
Posted Dec 21, 2021 - 13:30 CST
In progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Posted Dec 14, 2021 - 13:30 CST
Technologies used by the When I Work products are not susceptible to the Log4J vulnerability. In an abundance of caution, we have audited all application code and did not find any usage of Log4J. We are currently auditing 3rd party systems and tools that support and maintain the When I Work platform, including Amazon AWS, and patching any and all affected systems. Firewall rules have been updated to block all requests attempting to use this exploit.
Posted Dec 14, 2021 - 13:25 CST
This scheduled maintenance affected: Web App.