Apache Log4j Vulnerability has been addressed | December 14, 2021

2021-12-14 03:11:18 UTC 2021-12-16 01:16:42 UTC

Thank you for always using Teachme Biz.

A vulnerability has been reported against Apache Log4j, a logging library for Java. 
Related: Apache Log4j Security Vulnerabilities

Teachme Biz has confirmed that some of its middleware depends on "log4j" and has implemented countermeasures such as updating the middleware and disabling the function that caused the vulnerability by 19:00 JST on December 13, 2021.

Note that even before disabling the function that caused the vulnerability, the WAF (Web Application Firewall) has already been configured to block external attack requests.

If you have any questions or concerns, please feel free to contact us from here.