No Impact Found with Log4j Vulnerability on Brekeke Products
There is no impact due to the Log4j vulnerability on Brekeke products as all Brekeke products that have been released up till this time (December 2021) uses version 1.x.
We confirmed that the Tomcat that is installed with our installer program had not been affected by this vulnerability. For details, please visit the Apache Tomcat website (https://tomcat.apache.org/).
Brekeke PBX uses ServerSocket class; however, there is no effect from this vulnerability as the program only listens to the loopback IP address.