We are aware of the Apache Log4j critical vulnerability (CVE-2021-44228) and have taken swift action with an intensive security audit to evaluate our systems against the vulnerability and have implemented security updates. We have not discovered any evidence of compromise.
Due to the pervasiveness of the vulnerability, we are taking a detailed and comprehensive approach, where we will continue to evaluate our partners, monitor our systems and deploy security measures to address any potentially vulnerable systems.
Logitech takes the security and safety of our systems, products and customers’ data very seriously. We will continue to closely monitor the environment.
For more information on the vulnerability:
Official advisory alert: https://logging.apache.org/log4j/2.x/security.html