mvIMPACT Acquire SDK not affected by log4j Java vulnerability
Since we have inquiries concerning this issue, we can briefly give the all-clear:
The log4j framework is neither used in our mvIMPACT Acquire SDK nor in our firmware.
The log4j framework is not even part of the Java binding of mvIMPACT Acquire SDK, which is only used in combination with the JAVA API of mvIMPACT Acquire, (https://www.matrix-vision.com/manuals/SDK_JAVA/index.html).
Nevertheless, even if we can give the all-clear for our products, please check your IT and your software if you use the framework in any case and take action to close the security vulnerability if necessary.
Background: On 10/12/2021, the vulnerability "CVE-2021-44228" was published. Read more: https://logging.apache.org/log4j/