On December 9, 2021, erwin by Quest was made aware of a critical security vulnerability impacting the Apache Log4j library associated with CVE-2021-44228 (also known as Log4Shell or LogJam).
For further information on this please click here
How does this affect me?
This is 3rd party industry wide alert on all Java Log4 application users. On erwin EA Agile, one of the NoSQL command line tools (on our end) has possible exposure to this vulnerability alert.
A hot fix has been applied to remedy this with release 140.0 on erwin SaaS EA Agile/DM NoSQL environments.
No action is required from users.
Please review the following knowledge article for further details on this issue.We apologize for the inconvenience this issue may have caused and look forward to assisting you in the future.