The CimTrak Integrity Suite software is not affected by the Log4j vulnerability. The following is a statement regarding the Log4Shell situation.
MERRILLVILLE, Ind., December 15, 2021 - The Apache software vulnerability, CVE-2021-44228, also known as Log4j or Log4Shell, has created issues for many organizations on a global scale. However, the CimTrak Integrity Suite is not affected, as Cimcor, Inc. does not use Log4j within any CimTrak Integrity Suite products.
The Log4j vulnerability is of great concern to the industry because it is so pervasive and a widely used tool, and a compromise could result in systems being altered or modified. The CimTrak Integrity Suite is still the best way to ensure that your critical systems have not been modified and are in a state of integrity.
Please let us know if you need help configuring CimTrak in a way to monitor your critical systems in real-time, or to acquire additional licenses.
Cimcor develops innovative, next-generation, compliance, and system integrity monitoring software. The CimTrak Integrity Suite monitors and protects a wide range of physical, network, cloud, and virtual IT assets in real-time while providing detailed forensic information about all changes. CimTrak helps reduce configuration drift and ensure that systems are in a secure and hardened state. Securing your infrastructure with CimTrak helps you get compliant and stay that way. For more information, visit https://www.cimcor.com/cimtrak/.
Jaqueline von Ogden
Director, Communications & Marketing
December 16, 2021