Impact of Apache Log4j flaw
December 22, 2021
Broadpeak would like to inform its customers that we are actively reviewing the recently published “Apache Log4j Remote Code Execution“ vulnerabilities and assessing impact on our products.
The security of our products is a top priority and critical to protecting our customers and products. The team is working actively to make sure we can rapidly develop fixes and turnarounds, to guarantee security.
Only one of our products has been impacted, see here for details (Updated 22-Dec-2021).
We will very regularly update this page.
For any concern related to this event, please feel free to contact your Regional Broadpeak Support Team.
Legal notice: The information hereunder should be read and used to help user avoiding or mitigating situations that may arise from the issue described in this notice. BROADPEAK reserves the right to make corrections, modifications, enhancements, improvements, and other changes to such statement at any time. The risk assessment is based on the average risk of a set of installed systems based on available knowledge. There may not be actual risk to your specific installations and environment. All users shall determine if this information is applicable to their individual environments and take appropriate action, including contacting their BROADPEAK support interface according to their contract. Such notice shall not provide any additional warranty, representation or liability than the agreement between BROADPEAK and its customers. BROADPEAK cannot be held responsible for any damage, loss, failure or cost arising from its users' failure to follow BROADPEAK's advice or instructions. In all circumstances, the users shall take appropriate and economically reasonable measures to prevent further damage. TO THE FULL EXTENT PERMITTED BY APPLICABLE LAWS AND REGULATIONS, UNLESS OTHERWISE AGREED IN WRITING BY BROADPEAK IN ANY OTHER SPECIFIC AGREED CONTRACT, SUCH INFORMATION ARE PROVIDED ON AN "AS IS" BASIS ONLY, WITHOUT WARRANTIES, GUARANTEES OR REPRESENTATIONS OF ANY KIND. BROADPEAK HEREBY EXPRESSLY DISCLAIMS, TO THE FULLEST EXTENT PERMITTED BY LAW, ALL EXPRESS, IMPLIED, STATUTORY OR OTHER WARRANTIES, GUARANTEES OR REPRESENTATIONS, INCLUDING BUT NOT LIMITED TO, THE LEGAL, AND/OR CONTRATCUAL IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. Unless otherwise agreed in writing by BROADPEAK in any other specific contract, to the extent permitted by applicable laws, BROADPEAK and any of its affiliates, directors, employees, agents, or other representatives shall not be liable for the data or information provided hereunder regardless of the ground of the liability. BROADPEAK liability will be limited to any direct damage suffered by the user according to its contract, and in any event, where BROADPEAK is determined as being liable, its maximum aggregate liability under or in connection with such corresponding contract. Some jurisdictions do not allow the limitation or exclusion of warranty or liability for consequential or incidental damages, so the above limitation shall apply to the full extent permitted by law. This statement and the various elements contained therein are proprietary and are protected by various intellectual property rights (notably by copyrights, models, and patents) owned by BROADPEAK or by other third parties. Such statement is issued and subject to laws of France, without its conflict of law rules. For more information on BROADPEAK web site: https://broadpeak.tv/legal/