A vulnerability has recently been reported of a widely-used java logging library, log4j. We are aware of this and can confirm this does not directly impact DeskDirector or its integration with ConnectWise/Autotask.
log4j is a java-based logging library. DeskDirector is written on a .NET stack. There is no Java in our technology stack (sound life choices).
Please coordinate with your PSA's support for more information or you can read more about it from their respective statements:
• Autotask - Datto’s Response to Log4Shell
• ConnectWise - ConnectWise Security Update
More information can be found about the vulnerability at the Apache Software Foundation who publish the library