Product
- All you need to know
- Salesforce Clouds And Technologies
  - Classic and LightningProvar tests work in both Classic and Lightning. If you’re still moving to Lightning, or merging an older org, Provar can help.
  - Platform CloudProvar supports any custom app built on the Salesforce Platform.
  - Sales CloudGet up and running with test automation for Sales Cloud in hours rather than days or weeks.
  - Service CloudAutomate the testing of your mission critical workflows, including Cases, Consoles and Communities.
  - Field ServiceHard to test features like Work Orders and Service Territories are easily automated with Provar.
  - ServiceMaxBuild Provar tests while working in ServiceMax. Metadata mapping makes test building fast, easy and without the maintenance overhead.
  - Salesforce CPQEasily create tests with Test Builder and keep the pricing, product and proposal process error free.
  - Salesforce Industries (Vlocity)Provar’s unique solution readily identifies and maps Vlocity UI elements using a custom locator.
  - Industry CloudsProvar works across Industry Clouds for a seamless test building and automation experience.
Solutions
- Industries
- Provar for…
  - Business Sponsors and Salesforce OwnersGet results faster: Provar helps your team focus on delivery
  - Architects and Release ManagersClose the testing gap. Provar enables your team to deliver faster and more reliable releases
  - Salesforce Admins and QATired of manual testing? Provar helps you automate your testing so you can get on with other work
  - Salesforce developers & automation engineersNext generation testing. Provar lets you scale your testing, increasing reliability and reducing failures
- Considerations
Customer Stories
- Proof Points
- Customer Results
Resources
- At your fingertips
About
- Get to know us
  - Company
  - Careers
  - Partners
  - Newsroom
  - Contact
- Provar Announces Partnership with Software Testing Company Abstracta
  
  By Provar Staff
  October 27, 2022

Provar and the Log4J vulnerability

Provar is aware of the Log4J vulnerability that became public on the 9th December.

From our initial analysis we do not believe that Provar is vulnerable.

The attack involves injecting messages into server logs with placeholder variables that are then looked up in an external LDAP server. Since Provar is a desktop/command line tool it does not provide this mechanism for exploiting the vulnerability.

Provar does not log any server activity and offers no other mechanisms by which an attacker could inject these strings into Log4j.

We use cookies to better understand how our website is used so we can tailor content for you. For more information about the different cookies we use please take a look at our Privacy Policy.

Scroll to Top

What are you looking for?

Provar and the Log4J vulnerability