Worldwide security vulnerability in the Java library Log4j

A large number of servers on the Internet are at risk because of the Log4Shell cyber attack on the widely used Java library Log4j. Like many products from other software providers, individual EASY SOFTWARE products are unfortunately also affected.

The critical vulnerability may have an impact on all Java applications accessible from the Internet. The German Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik- BSI) warns of a critical threat situation. The extent of the threat is currently difficult to assess and the information situation changes hourly.

The affected products are:

  • EASY DMS (Documents)
  • EASY ApiOmat products

We are working continuously on recommendations for action and solution scenarios for our customers and partners. To this end, we offer registered customers and partners further information and assistance in this password-protected area.

We have checked the following products and can verify that they are not affected:

  • EASY Archive 6 & 7
  • EASY for Exchange
  • EASY for Dynamics NAV
  • EASY for Dynamics 365 BC
  • EASY for Dynamics 365 FO
  • EASY for SAP
  • EASY for SAP Solutions
  • EASY for SharePoint
  • EASY for Notes
  • EASY Capture Plus
  • EASY X-Invoicing Services
  • IRIS