We want to let all our customers know that Syncovery is not affected by the Log4j vulnerability that surfaced in December 2021 (CVE-2021-44228).

Syncovery does not use Java, and therefore does not use the Log4j code. Syncovery is a compiled application that is distributed as native CPU code.

Our web servers are also not affected. Java is not installed on any of our servers.

We also do not use any of the coding techniques that caused the Log2j vulnerability. There is no similar code in Syncovery.

Post Category: