ARIN’s Log4j Zero-day Bug Vulnerability Review Results
Posted: Wednesday, 15 December 2021
Service Update
ARIN is aware of the zero-day bug located in Apache Log4j software. We have completed an audit of our codebase for public-facing services and found that ARIN is not vulnerable to this exploit. Our team is actively working with our third-part vendors to identify and resolve any potential issues with their tools and services, and we will be monitoring this situation closely going forward.
For additional information on the log4j vulnerability, please visit NIST’s National Vulnerability Database, located at https://nvd.nist.gov/vuln/detail/CVE-2021-44228.
Regards,
Mark Kosters
Chief Technology Officer
American Registry for Internet Numbers (ARIN)
Recent Announcements
- The 2023 Nomination Committee
- 2022 Annual Report Now Available
- New Features Added to ARIN Online
- Register Today for Our “Get to Know the ARIN Policy Development Process” Webinar
- Announcing the 2023 ARIN Grant Selection Committee
- Last Chance to Complete the ARIN Customer Satisfaction Survey
- ARIN Online Maintenance Scheduled for 13 May
- ARIN 51 Meeting Report Now Available
- New Policy Development Process Now Implemented
- Billing System Maintenance Scheduled for 27 April
- » View Archive