In short; no, Omnivex software is not affected by this vulnerability.
A vulnerability in Log4j, a widely used logging package for Java has been found. This vulnerability, which can allow an attacker to execute code through log messages was publicly disclosed by Apache on December 9, 2021.
Omnivex does not use any Java technology in our software stack, including in third-party components. Because of this, no Omnivex software is impacted by this vulnerability.
Omnivex has confirmed that this vulnerability does not affect the following Omnivex products:
|Moxie Data Server||All versions|
|Moxie Studio||All versions|
|Moxie Player||All versions|
|DataPipe Server||All versions|
|DataPipe Client||All versions|
|XMLLink (service)||All versions|
|CalendarLink (service)||All versions|
|IOLink (service)||All versions|