Investigation of Log4j Vulnerability

On December 10, 2021 Illumina was made aware of a vulnerability in the Apache Log4j software suite (CVE-2021-44228, CVE-2021-45046, and CVE-2021-44832). This software component is a Java-based logging utility and part of the Apache Logging Services Foundation products. After we became aware of the issue, we launched an investigation to identify potentially affected products and assess risk. For updates on specific Illumina software products, Illumina recommends that our customers monitor the Technical Bulletins page. We will continue to provide updates as necessary based on our investigation.

Illumina takes data privacy and security issues very seriously, and we hope this information helps alleviate any concerns about this vulnerability. If you have any questions, contact Illumina Technical Support.