MedDream is not affected by Log4j

2021-12-13

category-icon

2021-12-13

MedDream Dicom Viewer Vulnerability Status

Status of Zero-Day Exploit Log4j in MedDream DICOM Viewer: MedDream is not affected by Log4j vulnerability

On December 9th, 2021, a 0-day exploit in the Java logging library log4j (version 2) was discovered CVE-2021-44228. The Softneta team evaluated the vulnerability as a Low Level Risk for MedDream DICOM Viewer supported versions as the MedDream does not contain JNDI vulnerable classes. In order to avoid possible log4j vulnerability risks, Softneta decided to release the new version of MedDream DICOM Viewer with the fixed v.2.16.0 of log4j.