Many customers have asked if AMI uses the vulnerable Log4J open-source software.
We don’t. Neither AssetTrack for ServiceNow nor AssetTrack Server use Log4J.
At this time, no vendors to AMI have provided notification of their vulnerability to this exploit. This includes ServiceNow, who has published their own response regarding Log4J indicating how the ServiceNow platform is not vulnerable.
We will continue to monitor the situation and provide any relevant updates that arise.
If you have any questions about this, please contact us at firstname.lastname@example.org.