Software : Data & Analytics : IIoT
The world is changing around us. Industrial enterprises need a technology partner that can help them survive—and thrive—wherever the situation, whatever the disruption. That’s where PTC shines. Our unique portfolio of CAD, PLM, IoT, and AR technologies—delivered on-prem, hybrid, and SaaS—creates a closed loop between the digital and physical worlds to transform how everything around us is engineered, manufactured, and serviced. This digital thread enables continuity of data across departments and fosters collaboration across functions, empowering the people who are involved at every step. PTC’s best-in-class technology enables industrial customers, from industrial equipment, high-tech, automotive, aerospace and defense, and medical devices, to improve efficiency, maximize revenue growth, and reduce operational costs.
Log4j Security Vulnerability Response Center
For remediation for Apache Log4j 2 CVE-2021-44228 and CVE 2021-45046, PTC recommends removing the JNDILookup.class as described in the remediation from Apache. Throughout PTC’s testing to date (December 10 to December 15, 2021) there have been no adverse impacts from using this method. PTC has not used this dynamic loading capability in our products, and the remediation should be both effective to the vulnerability and very low risk to our products. Any risk of this change is limited in scope to the logging subsystem of applications, and any resulting errors are far less significant than the exposure of this vulnerability. Customers can preemptively remediate the vulnerability while awaiting official certification to reduce their immediate exposure to this critical issue.