WinZip Statement on Apache CVE-2021-44228

10 users found this article helpful

WinZip prioritizes the security of our products. When security researchers discovered a significant vulnerability (CVE-2021-44228) in the widely used Apache logging utility log4j 2.0-beta9 to 2.14.1, our security team conducted an immediate investigation to determine if the vulnerability impacted our products.

WinZip does not use any version of the log4j libraries. As a result, we have no reason to believe that this recent vulnerability exists within WinZip products.

We understand that this security vulnerability is a major source of worry for our customers. If you have questions, please contact WinZip support here.

WinZip is continuously monitoring the situation and will communicate any updates appropriately.

Was this article helpful?

Tell us how we can improve it.