Pilz Hardware And Software Not Affected By “Log4Shell” Vulnerability In Software Library Log4j

DCS PILZ Log4Shell Vulnerability 1 400

December 17, 2021

 

Dear Madam or Sir,

 

On December 10th, 2021, the BSI (the German Federal Office for Information Security) published a cyber security alert on the so-called “Log4Shell” vulnerability in the software library Log4j. Log4j is used in many Java applications.

From the BSI alert:

“An IT security vendor blog [LUN2021] reports on vulnerability CVE-2021-44228 [MIT2021] in log4j versions 2.0 through 2.14.1, which may allow attackers to execute their own program code on the target system and thus compromise the server.”

 

Further information is available at:

 

Pilz’s analysis revealed the following:

  • ••Pilz hardware components do not use Java and thus no log4j. Therefore, these components are not affected.
  • ••Pilz Software products partially use log4j versions 2.0 to 2.14.1 (current vulnerability CVE-2021-44228). Analyses to date have shown that it is highly unlikely that the vulnerability can be exploited. If, contrary to expectations, there is a risk, we will publish a security advisory.
  • ••In some Pilz Software products, log4j version 1.2.x is used. The exploitation of the vulnerability in this version (CVE 2021-4104) requires, among other things, a specific configuration. However, this configuration is not used in Pilz Software products.

 

We hope this information is helpful to you. If you have any further questions, please contact our technical support:support@pilz.com.

With best regards

Pilz GmbH & Co. KG

 

Source

 

Related Articles


Latest Articles

  • Innovations in Terminal Blocks: Towards More Efficiency and Sustainability

    December 10, 2024 In this rapidly changing world of industrial automation, the terminal blocks remain some of the unsung heroes. Small but mighty, they make sure that connections are seamless and that all machinery and systems which constitute modern industries are running smoothly. But like everything else in technology, they too have not remained static…. Read More…

  • How to Install a Solid State Relay (SSR) to Get Optimal Performances ?

    November 27, 2024 In order to get the optimal performances of your solid state relay (SSR) you need to follow celduc’s mounting instructions. Here are celduc’s top 6  tips for an optimal installation of SSRs. 1-Heatsink mount to allow heat dissipation 2-Using a thermal interface 3-Do not mount SSR on a plastic or painted surface 4-Screw terminals… Read More…


Featured Article

Revolutionizing Material Movement with Autonomous Mobile Robots

Revolutionizing Material Movement with Autonomous Mobile Robots

In today’s fast-paced manufacturing and logistics industries, the need for efficient and flexible material movement solutions has never been greater. Traditional methods like conveyor systems, forklifts, and manual pushcarts have served us well, but they come with limitations.

That’s why Omron is thrilled to announce the launch of their game-changing MD Series of Autonomous Mobile Robots (AMRs). Read more


Products

  • Helping Industries Do Better with Generative AI: ABB Launches Genix Copilot with Microsoft

    December 12, 2024 Building on its long-standing collaboration with Microsoft, ABB has launched ABB Ability™ Genix Copilot, a generative AI solution that helps energy, utilities and other industries improve efficiency, productivity, and sustainability by contextualizing vast amounts of data and providing actionable insights in an intuitive manner. Genix Copilot utilizes large language models such as… Read More…

  • Promise Robotics Transforms Automation in Homebuilding with Next-Gen Control Platform

    December 11, 2024 The AI-powered robotic system enables homebuilders to build more homes faster with less resources using flexible automation and distributed drive technology from Beckhoff Imagine a world where affordable, sustainable housing isn’t a dream, but a reality. This vision faces two significant hurdles: skyrocketing construction costs and a shortage of skilled labour. These… Read More…