ITS Online Services & Apache Log4J vulnerability

In response to the reported vulnerability in versions of the Apache Software Log4J Java library, ITS Online has reviewed all service offerings to ensure our services can not be exploited by this vulnerability.

ITS Online confirms that NONE of the ITS Online Services use the Log4J software versions or associated libraries identified by Apache as vulnerable to exploitation.

A non-exhaustive list of ITS Service Offerings reviewed include:

•             ITS Smart Order Router including all associated feed handlers, etc.

•             ITS TraderLite and ITS TraderLite GUI workstations,

•             ITS TraderLite Market Data Workstations,

•             ITS OrderGuard,

•             ITS TradeThrough (also sometimes referred to as MSGViewer)

•             ITS infrastructure servers that operate all service offerings