Max2Play Home 2016 (en) › Forums › Max2Play Development (Ideas, Wishes) › Does vulnerability in Apache Log4j library affect LMS or Max2Play? › Reply To: Does vulnerability in Apache Log4j library affect LMS or Max2Play?
The basic installation of Max2Play is not affected by Log4j. However, if packages are subsequently installed that run using Java (and thus usually also use Log4j), then it would theoretically be possible that there is a security risk, provided that the device and the service can be accessed via the Internet.
However, this is very unlikely – the most common targets will be popular programs among end users.