A new remote code execution vulnerability was recently reported in the Apache Log4j library (referenced as CVE-2021-44228 in the CVE database and being referred to as Log4Shell or LogJam).
The Apache Log4j package is a popular logging tool for Java. However E-MetroTel products, including the UCX server software, DSM16, DSM16P, FXO/FXS cards, E-MetroTel gateways, Infinity phones, and InfinityOne products do not use Java programming.
No E-MetroTel products are impacted by this CVE-2021-44228 vulnerability.