On December 10, 2021 CVE-2021-44228 was reported, describing an exploit in the Log4j library that allowed a malicious user to run code on an affected system.
Solution
GeoExpress does not contain any version of log4j and is not affected by the issue.
If you have any further questions please submit a support request and we'll be happy to assist