WinZip Statement on Apache CVE-2021-44228

10 users found this article helpful

WinZip prioritizes the security of our products. When security researchers discovered a significant vulnerability (CVE-2021-44228) in the widely used Apache logging utility log4j 2.0-beta9 to 2.14.1, our security team conducted an immediate investigation to determine if the vulnerability impacted our products.

WinZip does not use any version of the log4j libraries. As a result, we have no reason to believe that this recent vulnerability exists within WinZip products.

We understand that this security vulnerability is a major source of worry for our customers. 

WinZip is continuously monitoring the situation and will communicate any updates appropriately.

Was this article helpful?

Tell us how we can improve it.