A zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021. Our teams, in conjunction with our third party vendors, have investigated our exposure to CVE-2021-44228 and are confident that Calendly is not vulnerable to the Log4j vulnerability. We have deployed mitigations to filter out these malicious requests and are monitoring our systems and any new developments as they arise.
No components marked as affected
Resolved
A zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021. Our teams, in conjunction with our third party vendors, have investigated our exposure to CVE-2021-44228 and are confident that Calendly is not vulnerable to the Log4j vulnerability. We have deployed mitigations to filter out these malicious requests and are monitoring our systems and any new developments as they arise.