We are receiving questions around CVE-2021-45046. This CVE is a follow-up exploit to CVE-2021-44228. As such, the statements below also apply for CVE-2021-45046.
Like many providers of online services, we have spent the last few days responding to the Log4j RCE vulnerability, CVE-2021-44228, dubbed Log4Shell or LogJam, and the related CVEs that were discovered following the disclosure of 44228.
After reviewing our codebase, we are confident that Yggio and included libraries like KeyCloak and related products like Grafana are NOT affected.