Security vulnerability log4j – EGroupware and the integrated tools are explicitly NOT affected:

You can find more information about the security gap log4J here.

EGroupware uses PHP on the server side and not JAVA. The client-side used Javascript and Typescript has no relation to JAVA. We have also checked all integrations or consulted with the manufacturers. Also Collabora Online, Dovecot, Rocket.Chat, Jitsi and Guacamole explicitly do NOT use the Java library Log4j.

There is no such security gap in EGroupware – neither in the self-installation nor in the EGroupware Cloud. Your data is safe.

Warm regards

Your EGroupware Team