As you have likely heard or read about, there is currently a major vulnerability with Apache Log4j.
After a thorough analysis of all system components, our teams concluded that Avanan and Check Point are not affected by this vulnerability as we do not make use of the affected library. Customers remain fully protected.
Apache Log4j is the most popular java logging library and is used by many companies across the globe, enabling logging in a number of apps. The exploit works over HTTP or HTTPS, with a number of alternatives for attackers to do cryptocurrency mining at the expense of victims.
Check Point Research is thoroughly investigating this vulnerability and will continue to update on any new developments. Check Point has written extensively about the issue, which you can read here.
As always, please feel free to contact your Customer Success rep directly with any questions or concerns.