Log4Shell (also known as CVE-2021-44228) is a recently-discovered vulnerability in Log4j, a popular Java-based logging utility that is primarily used in Apache web servers. Publicly announced on December 9, 2021, this serious vulnerability could allow attackers to take full control of a vulnerable server. Since Apache is among the most commonly-used web server software on the internet, this vulnerability potentially has wide-ranging consequences.
Biamp products are not impacted by this vulnerability, and no action is required. Biamp Engineering has conducted a review of all Biamp product families, and confirmed that no Biamp products utilize the Apache Log4j framework.
More detailed information about this vulnerability can be found at https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance.