Butterfly Network has been aware of the remote code execution vulnerabilities (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832) related to Apache Log4j.
On December 10th, 2021, our security and engineering teams actively assessed our product based on the available information to determine any possible impact from the Log4j vulnerabilities. No impact on the security of our product has been found and we have not detected any suspicious activity nor experienced any issues due to these vulnerabilities. We continue to monitor our product and third-party services to identify any potential impact and take prompt measures.