1. Home
  2. /
  3. Resources
  4. /
  5. Information about the Log4j vulnerability CVE-2021-44228

Information about the Log4j vulnerability CVE-2021-44228

hero-sub-3
EJBCA Signserver

2021-12-13

PrimeKey has conducted an assessment of the recently-announced CVE for the log4j library CVE-2021-44228. The quick answer is that most of our products are not affected. This includes EJBCA, SignServer, hardware appliances, and software appliances.

EJBCA and SignServer, including the Hardware Appliance and Software Appliance, make use of the application servers logging implementation which is not affected by this vulnerability.

Detailed investigations are still ongoing. For more information, refer to our Support portal.

Related resources

PKI hierarchies - 1, 2, 3 tiers ?
Implementing Cryptography
Post-Quantum Cryptography
Tech Update
Ejbca
Signserver
24 February, 2026

#KEYMASTER: The State of Hybrid Certificates in a Post-Quantum World

In this #KEYMASTER session, Sven Rajala sat down with Chief PKI Officer Tomas...
Read more
PKI hierarchies - 1, 2, 3 tiers ?
Industrial Cybersecurity & IoT
Tech Update
Ejbca
Signserver
3 February, 2026

#KEYMASTER: Why Certificates Matter in OT Security

In this episode of #KEYMASTER, Sven Rajala, International PKI Man of Mystery,...
Read more
Close