Reckon products and the Log4j vulnerability
Community Manager
RECKON PRODUCTS AND THE LOG4J VULNERABILITY
On Dec 9 2021, a remote code execution (RCE) vulnerability in Apache log4j 2.x was identified being exploited in the wild.
Public proof of concept (PoC) code was released and subsequent investigation revealed that exploitation was incredibly easy to perform. This has been identified as CVE-2021-44228 in Common Vulnerabilities and Exposures listings and is also known as Log4Shell.
For further information consult the NIST Listing here: https://nvd.nist.gov/vuln/detail/CVE-2021-44228
Reckon has conducted a full investigation throughout its source code and can confirm that no Reckon product was, or is, vulnerable to CVE-2021-44228.
Additionally, Reckon is assessing all suppliers that are significant sub-processors of Reckon Customer data, and is pleased to report that the vast majority are not impacted by CVE-2021-44228 and where they are, mitigation actions are taking place. You can view our list of sub-processors here
Reckon will continue to monitor for any future developments in regards to this vulnerability and take further action if required.
ℹ️ Stay up to date with important news & announcements for your Reckon software! Click HERE for more info.
Categories
- All Categories
- 6.9K Accounts Hosted
- 11 📢 Reckon Accounts Hosted - Announcements
- 6K Reckon Accounts (Desktop)
- 3 📢 Reckon Accounts Desktop - Announcements
- 1.2K Reckon Payroll 🚀
- 21 📢 Reckon Payroll - Announcements
- 21 Reckon Payroll Help Videos 🎥
- 21 Reckon Mate App
- 3.1K Reckon One
- 7 📢 Reckon One - Announcements
- 11 Reckon Invoices App
- 14 Reckon Insights
- 114 Reckon API
- 830 Payroll Premier
- 326 Point of Sale
- 2K Personal Plus and Home & Business
- 74 About Reckon Community