PR: Waterfall Products Do Not Use Log4j

Rosh HaAyin, Israel, December 14, 2021

Waterfall Security Solutions, the OT security company, hereby announces that Waterfall products do not use the Apache Log4j software module and do not exhibit the CVE-2021-44228 vulnerability that was recently announced in Log4j.

Background:

The recent CVE-2021-44228 vulnerability in the widely-used Apache Log4j package is of widespread concern – the vulnerability is rated as the highest severity in the CVE system and is being exploited in the wild.

Details:

Waterfall Security Solutions has investigated and determined that no Waterfall product uses the Log4j module, and so no Waterfall product exhibits the CVE-2021-44228 vulnerability. In addition, the unidirectionality of Waterfall’s Unidirectional Security Gateway products is enforced physically, in hardware. There is, therefore, no network attack nor software vulnerability that can affect this unidirectionality.

About Waterfall Security Solutions

Waterfall Security Solutions is the OT security company, producing a family of Unidirectional Gateway technologies and products that enable enterprise-wide visibility for operations, with disciplined control. Waterfall products represent an evolutionary alternative to firewalls. The company’s growing list of customers includes national infrastructures, power plants, nuclear plants, off and on shore oil and gas facilities, refineries, manufacturing plants, utility companies, and many more. Deployed throughout North America, Europe, the Middle East and Asia, Waterfall products support the widest range of leading industrial remote monitoring platforms, applications, databases, and protocols in the market. For more information, browse our website.