14 December 2021
We are aware of the global vulnerability to IT systems that has been identified which has the ability to allow an attacker to take control of a system. PASS is not affected as we do not use the version of the mentioned log4j library.
We reviewed our systems as soon as we became aware and have extended this review to the third-party suppliers who provide supporting infrastructure for PASS.
We will of course continue to monitor for any further updates on this vulnerability and will post any updates on our website.