The Cezanne HR service does not use Log4js and therefore it is not affected by the recent Log4j 2 vulnerability. We have ensured all security patches have been applied to the infrastructure and our anti-virus software is fully up to date.

We have also confirmed that applications, systems and services used by Cezanne HR have either implemented patches for Log4j2 or they are not affected by the vulnerability.