Inquiry on Apache Log4j's Effect on the Brave Browser

Is there any confirmation that the Brave browser is not impacted by the Apache Log4J vulnerabilities (CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105)?

We did look into it immediately when the bugs came out, but we did not discover any public-facing Brave services affected by the log4j2 vulnerabilities - or any public projects (including the Brave browser) employing thelog4j2 library.

2 Likes