A vulnerability in Apache Log4j, (a widely used logging package for Java) has been announced. This vulnerability can allow an attacker to execute arbitrary code by sending crafted log messages. For more information on this vulnerability and available patches please refer to the Apache Log4j Security Vulnerabilities website.
As soon as the Log4j vulnerability was announced, FARO® conducted internal investigations to understand the potential effect of this vulnerability across the FARO product line. The conclusion of the investigation confirms FARO hardware and software products are not affected by the Log4j vulnerability.
If any new information is discovered affecting FARO products this article will be updated accordingly.