Kindly advise if Eikon/Refinitiv has Apache Log4j Vulnerability, and if so, any fix is available.

yogesh.srinivas

Kindly advise if Eikon/Refinitiv has Apache Log4j Vulnerability, and if so, any fix is available. https://blogs.juniper.net/en-us/enterprise-cloud-and-transformation/apache-log4j-vulnerability-cve-2021-44228-raises-widespread-concerns

wasin.w

Hello @yogesh.srinivas

The Eikon Data API is the Python library, so it does not use the Apache Log4j. The Real-Time SDK uses the Java Logging API by default, not the Log4j. It means both Eikon Data API and Refinitiv Real-Time SDKs do not have the Log4j Vulnerabilities.

However, Refinitiv has a lot of APIs and Products, so I highly recommend you contact the Production teams directly to clarify Log4j with their products.

yogesh.srinivas

Thank you Wasin