Skip to content
Sign in
Open Ticket
  • There are no suggestions because the search field is empty.

December 2021 - Security Alert - Log4j / CVE-2021-44228

1/31/22 2:01 pm EST (UTC-5:00)
CMS Enterprise version 4.3.8.0 was released on 1/21/22 which contains the mitigation for the Log4j issue.  You can download the update here -CMS Enterprise - Software for ScreenBeam commercial receivers

1/14/22 5:21 pm EST (UTC-5:00)
Due to a critical bug discovered in the CMS Enterprise 4.3.7.0 release candidate, the next public release will be 4.3.8.0 and should be available the week of January 17th.  We apologize for the delay, the bug has already been addressed and the release candidate is going through QA.

1/6/22 11:02 am EST (UTC-5:00)
The release date for CMS Enterprise 4.3.7.0 has been pushed one week, expected release by January 14th, 2022. The table below from 12/17/21 has been updated to reflect this change. We apologize for the delay which will allow us to consolidate product/feature updates and Log4j mitigation into a single release.

12/17/21 3:16 pm EST (UTC-5:00)
Our engineers have completed an updated review of our ScreenBeam commercial products, the results are covered in the table below.

12/14/21 7:37 pm EST (UTC-5:00)
Our engineers have completed a preliminary review of our ScreenBeam commercial products, the results as of 12/14/21 can be found in the table below.

12/12/21 3:47 pm EST ( UTC-5:00)
ScreenBeam is aware of the zero-day vulnerability CVE-2021-44228 with Log4j.  Our engineering and security teams are actively working to asses any potential impact on ScreenBeam products.  As soon as we have an update from our internal teams on whether any products are affected, mitigation steps, and timelines for updates (if needed) we will share that information here.

Our engineering team has reviewed our code base and performed vulnerability testing with the latest analysis resources available to make determinations regarding whether or not products are affected.

Based on the existing timeline for the CMSE 4.3.7.0 release and the QA time required for an interim build the planned release of 4.3.6.100 has been scrapped.