← Back to Blog

LoginTC Log4j Impact

December 14, 2021 • Thomas Sydorowski

Update on December 20, 2021: LoginTC products and services are also not affected by the subsequent Log4j 2 vulnerabilities (CVE-2021-45046, CVE-2021-45105).

In light of the public disclosure of the Log4j vulnerability (CVE-2021-44228), our security team has performed a thorough review of the use of logging libraries in LoginTC products.

Are LoginTC Cloud services affected?

No, LoginTC Cloud services are not affected.

Are the LoginTC connectors affected? Do I need to update LoginTC connectors running on my premises?

No, the LoginTC connectors are not affected. This includes:

• LoginTC RADIUS Connector
• LoginTC Windows Logon and RDP Connector
• LoginTC RD Web Access Connector and LoginTC RD Gateway SSO Connector
• LoginTC AD FS Connector
• LoginTC OWA Connector

However, we do recommend to always keep your LoginTC Connector updated to the latest version. See your connector documentation for instructions on upgrading to the latest version.

Are the LoginTC end-user apps affected? Do my users need to update their LoginTC iOS and Android and Chrome apps?

No, the LoginTC end-user apps are not affected. This includes:

• LoginTC iOS
• LoginTC Android
• LoginTC Chrome extension

However, we do recommend that your users always use the latest versions of each LoginTC end-user app as well as their mobile and desktop operating systems. Your users can update their LoginTC app by visiting their device’s iOS App Store, Android Google Play store, and the Chrome Web Store.

If you have any questions about our security review, don’t hesitate to reach out by phone at 1-877-564-4682 or email at support@cyphercor.com.

← Back to Blog