WinZip prioritizes the security of our products. When security researchers discovered a significant vulnerability (CVE-2021-44228) in the widely used Apache logging utility log4j 2.0-beta9 to 2.14.1, our security team conducted an immediate investigation to determine if the vulnerability impacted our products.
WinZip does not use any version of the log4j libraries. As a result, we have no reason to believe that this recent vulnerability exists within WinZip products.
We understand that this security vulnerability is a major source of worry for our customers. If you have questions, please contact WinZip support here.
WinZip is continuously monitoring the situation and will communicate any updates appropriately.