Note: See this post for our latest updates to the broader evolving log4j2 vulnerability situation.
--
Publish Date: Dec. 14, 2021
SummaryWe're investigating the log4j vulnerability and potential impacts on users of the Spiceworks Help Desk Server.
Who’s Affected?Existing users of all versions of the Help Desk Server application (v1.3.3 and earlier) are impacted.
DetailsWe are actively investigating potential vulnerability of the Help Desk Server application to the widely known zero day "log4j" vulnerability (see references below). While we investigate, we have removed downloads for the Help Desk Server, including OVA, VHD and deb versions, out of caution. This prevents new users from downloading or installing the Help Desk Server while we investigate.
We recommend existing users of the Help Desk Server take action to temporarily block...