ClockOn is aware of the Log4j vulnerability announced on December 9th. We have performed a thorough check of our systems and have seen no indications of any impact from this vulnerability at this time. Out of caution, our team is continuing to monitor this event. Our customers don't need to take any action at this time.


Since this has been identified, it has been subsequently patched and some of your other providers may have already contacted you to advise that this action has been performed. 


We have also taken undertaken extensive checks to confirm that any providers that we use the products for and/or partner with have also confirmed that they either;

  1. Do not use this system or 
  2. Have applied the appropriate patches to prevent any issues from this exploit.

For more information on Log4J and its potential impacts, please review this article as published by the Australian Government Cybersecurity team.