by Mike.Sheen » Tue Jan 04, 2022 5:58 pm
Not impacted or exposed.
The Crystal Reports components we deploy use on log4javascript, not log4j.
Even if Crystal Reports was using Log4j - I'm having trouble dreaming up a situation where that could be exploited... perhaps if they were using our REST API and exposing it to the outside world and had exposed some routes to generate crystal reports...
Mike Sheen
Chief Software Engineer
Jiwa Financials
If I do answer your question to your satisfaction, please mark it as the post solving the topic so others with the same issue can readily identify the solution