Log4Shell/LogJam Exploitation Statement

IMM is aware of the recently announced Log4Shell / LogJam vulnerability, officially known as CVE-2021-44228. We have completed our initial review and investigation and have determined that IMM eSign (including Adobe Sign components), IMM eSignPlus, IMM eReceipts and IMM eChecks do not utilize the affected software and are NOT vulnerable to this exploit.

For our IMM eTeller Check21 solution, we are currently working with our third-party partner on remediation solutions.  Until such remediation is available, IMM recommends our clients block the Teller Item Capture server from any non-required internet URL’s as an immediate solution.  If you should have any questions, please contact our IMM technical support center.

We will be updating this statement in the future as appropriate.