Investigation of Log4j Vulnerability with TruSight Software Suite (TSS)

On December 10, 2021, Illumina was made aware of a vulnerability in the Apache Log4j software suite (CVE-2021-44228, CVE-2021-45046, and CVE-2021-44832). This software component is a Java-based logging utility and part of the Apache Logging Services Foundation products.

After we became aware of the issue, we launched an investigation to identify potentially affected products and assess risk. The TSS suite was affected and has since been patched.

Illumina takes data privacy and security issues very seriously, and we hope this information helps alleviate any concerns about this vulnerability. If you have any questions, contact Illumina Technical Support.