Leasepath FAQ Apache Log4j Vulnerability

Leasepath users that have questions about the recent vulnerability, see below.

Westlake Village, CA (Dec 11, 2021) — On December 09, 2021, a zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public. The vulnerability allows for unauthenticated remote code execution. Log4j 2 is an open-source Java logging library developed by the Apache Foundation. Log4j 2 is widely used in many applications and is present as a dependency in many services. These include enterprise applications as well as numerous cloud services.

None of Leasepath’s software solutions make use of the Apache Log4j library and are not vulnerable to such attacks.

For any additional questions or inquiries, please connect with Leasepath Support or Leasepath Customer Success.

About Leasepath

Leasepath is the Intelligent Workplace solution for Customer Engagement (CRM) and Origination (LOS) built exclusively for the asset finance industry; serving Banks, Independent Finance, Captive Finance and Brokers in North America and the United Kingdom. Leasepath’s SaaS solution leverages the Microsoft Power Platform to provide a proven, quick to implement, cloud-first solution with pre-built automation, pricing tools, amortization calculators, asset management, and integrations with credit bureaus and other mission critical applications. Leasepath is the preferred choice to equipment finance businesses to win more, risk less, and profit more. Learn more about Leasepath by visiting To learn more about how Team Leasepath is growing in 2022, read our blog on our “We Grow” initiative.