Apache Log4J Critical Vulnerability
Incident Report for Calendly
A zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021. Our teams, in conjunction with our third party vendors, have investigated our exposure to CVE-2021-44228 and are confident that Calendly is not vulnerable to the Log4j vulnerability. We have deployed mitigations to filter out these malicious requests and are monitoring our systems and any new developments as they arise.
Posted Dec 14, 2021 - 10:40 EST
This incident affected: calendly.com.