GeoExpress and Log4J Vulnerabilities

Issue

On December 10, 2021 CVE-2021-44228 was reported, describing an exploit in the Log4j library that allowed a malicious user to run code on an affected system.

Solution

GeoExpress does not contain any version of log4j and is not affected by the issue.