As you might know, researchers recently discovered a critical vulnerability in Apache Log4j library (CVSS severity level 10 out of 10).
As millions of other Java applications, this also affects the software products developed by TC&C. We are in the process of notifying all our customers, however please reach out to us for patching your CARIN or other instance.
Patching does not affect recording, but requires restart of the CARIN Web Application service, which means web interface won't be available for 2-3 minutes. In some special cases the patch can only be applied during non-business hours.. To get more information about the vulnerability please check this link: https://www.kaspersky.com/blog/log4shell-critical-vulnerability-in-apache-log4j/43124/