Platform
- Data Privacy Platform
  
  The simple, all-in-one data privacy platform
- Cookie Consent
  
  Manage consent for data privacy laws in 50+ countries
- Subject Rights Management
  
  Streamline the DSAR workflow
- Vendor Privacy Risk Management
  
  Ensure your customers’ data is in good hands
- Assessments
  
  Gain insights with privacy assessment templates and workflow management
- Platform features
- Data Discovery
- Privacy Templates
- GDPR Representative
- Consult Privacy Team
- Regulatory Guidance
- Integrations
Osano is proud to be recognized as a G2.com Leader for Consent Management.
Learn More
Solutions
- By Regulation
- CPRA
  
  Discover how Osano supports CPRA compliance
- CCPA
  
  Learn about the CCPA and how Osano can help
- GDPR
  
  Achieve compliance with one of the world’s most comprehensive data privacy laws
- By Organization Type
- Start-Up
  
  Don’t let data privacy compliance get in the way of growth
- Mid-Sized
  
  Preserve your competitive edge
- Enterprise
  
  Manage data privacy at scale
- By Use Case
- Consent Management
  
  Manage consent without the complexity
- DSAR Automation
  
  Never miss a DSAR deadline again
- Vendor Risk Management
  
  Regain insight and control over your customers’ data
- Privacy Program Management
  
  Build and grow an end-to-end privacy program
Resources
- Resources
- Articles
  
  Expert insights on all things privacy
- Newsletter
  
  Subscribe and become a Privacy Insider
- Topics
  
  Research the most essential privacy topics
- Free Privacy Audit
  
  We'll scan your website for privacy risk at no cost
- Our Pledge
  
  No fines, no penalties
- Product Updates
  
  What’s the latest with Osano?
- System Status
  
  What’s the status of account management systems, the platform, and support systems?
Latest Blog post

GDPR Compliance in the U.S.: What to Know

In 1992, Singapore banned the sale of all chewing gum. But if you...
Read Now
Company
- About Us
  
  The Osano story
- Careers
  
  Become an Osanian and help us build the future of privacy!
- Contact
  
  We’re eager to hear from you
- Our Pledge
  
  No fines, no penalties
- Data Licensing
  
  Add Osano data privacy ratings and recommendations to your application
- Swag Store
  
  Fresh duds for data privacy fans
- Press & Media
  
  Inquiries and Osano in the news
- Partners & Resellers
  
  Interested in partnering with us?
Pricing
Log In Book a Demo

Apache Log4j vulnerability update

Scott Hertel

December 16, 2021

Sign up for our newsletter

CVE-2021-44228 and CVE-2021-45046

Dec. 13, 2021

As soon as reports of the vulnerabilities in the open-source Apache Log4j logging utility were announced on December 10th, 2021, Osano’s engineering team launched an investigation into our use of Log4j across our services, systems and applications. While we found several instances where we were using this dependency for logging, every case involved entirely backend services where no public interface is exposed. Despite this, Osano is working to update instances where we use Log4j or remove this dependency entirely from these internal services.

References:

CVE -CVE-2021-44228

Dec. 14, 2021

Osano has updated the following services to Log4j 2.15:

PDF Conversion Service (internal).
Data Discovery Integration Processor (internal).

Dec. 15, 2021

The Log4j team has discovered additional vulnerabilities in their recent 2.15 release. While these new vulnerabilities are not seen as a risk to Osano operations, the Osano engineering team has updated the following services to Log4j 2.16:

PDF Conversion Service (internal).
Data Discovery Integration Processor (internal).

References:

CVE -CVE-2021-45046

Schedule a demo of Osano today

Privacy Policy Checklist

Are you in the process of refreshing your current privacy policy or building a whole new one? are you scratching your head over what to include? Use this interactive checklist to guide you.

Download Now

Scott Hertel

Writer at Osano

Scott Hertel

Writer at Osano

Scott Hertel is the CTO & co-founder of Osano. An experienced software architect, Scott has been building scalable data-driven software for more than 20 years. Prior to Osano, Scott was the founding CTO of Meta SaaS, a leading enterprise software asset management platform for cloud applications which was sold to Flexera Software in 2018.

Blog

Check out some of our latest articles

Osano is used by the world's most innovative and forward-thinking companies to easily manage and monitor their privacy compliance.

View all blog posts

Privacy can be complicated.

Osano makes it easy. Ready to get serious about data privacy? Choose your plan and get started. All plans come with a 30-day FREE trial!

Chat to sales

Cookie Consent

Subject Rights Management

Vendor Privacy Risk Management

Assessments

Data Discovery

Privacy Templates

GDPR Representative

Consult Privacy Team

Regulatory Guidance

Integrations

CPRA

CCPA

GDPR

Start-Up

Mid-Sized

Enterprise

Consent Management

DSAR Automation

Vendor Risk Management

Privacy Program Management

Articles

Newsletter

Topics

Free Privacy Audit

Our Pledge

Product Updates

System Status

GDPR Compliance in the U.S.: What to Know

About Us

Careers

Contact

Our Pledge

Data Licensing

Swag Store

Press & Media

Partners & Resellers

Apache Log4j vulnerability update

Scott Hertel

In this article

Sign up for our newsletter

Share this article

CVE-2021-44228 and CVE-2021-45046

Privacy Policy Checklist

Scott Hertel

Scott Hertel

Share this article

Blog

Check out some of our latest articles

EU Privacy Law

GDPR Compliance in the U.S.: What to Know

ChatGPT vs Privacy—How Concerned Should We Be?

Keeping Privacy Top of Mind at 2023’s Global Privacy Summit

Privacy can be complicated.