Update on Log4j Vulnerability CVE-2021-44228

CVE-2021-44228 is a vulnerability in Log4j, a Java logging framework. Generally, Verkada products and services do not utilize Java or specifically Log4j. We have found some infrastructure components we have that may use Log4j. The components we’ve found are not exposed to the internet, and we are preparing to further mitigate with patching or configuration changes. We will provide an update here if this information changes materially.