Solved: A question about Log4j vulnerability

Anonymous · ‎12-14-2021

Is Power BI affected by it? I've found nowhere denying nor confirming that Power BI uses it.

My initial understanding is that it's not affected, but i want to be sure about it.

Anonymous · ‎12-16-2021

Hi @Anonymous,

Thank you so much for bringing this issue to our attention.

Overall, Microsoft is aware of the log4j exploit and actively working with all services to remediate any issues. The Power BI service does not have any known reliance on this vulnerable library.
For the most up-to-date information on the issue status, please refer to the MSRC Advisory and Microsoft Security Threat Intelligence sites.

Regards,

Xiaoxin Sheng

View solution in original post

Anonymous · ‎12-16-2021

Hi @Anonymous,

Thank you so much for bringing this issue to our attention.

Overall, Microsoft is aware of the log4j exploit and actively working with all services to remediate any issues. The Power BI service does not have any known reliance on this vulnerable library.
For the most up-to-date information on the issue status, please refer to the MSRC Advisory and Microsoft Security Threat Intelligence sites.

Regards,

Xiaoxin Sheng

AlexisOlson · ‎12-14-2021

As far as I can tell, there isn't any direct vulnerability but I'd recommend reading Microsoft's response yourself:

https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021-44228-apache-log4j2/

A question about Log4j vulnerability

Helpful resources

Power BI Monthly Update - August 2025

Fabric Community Update - August 2025

Win a 3 Day Ticket to FabCon Vienna

A question about Log4j vulnerability

Helpful resources

Power BI Monthly Update - August 2025

Fabric Community Update - August 2025