A very serious vulnerability in the popular Java-based logging package Log4j was disclosed. This vulnerability allows an unauthenticated attacker to execute code on a remote server. You can learn more about the Log4j vulnerability here.
BPM Microsystems’s process control software, BPWin, is a C++ application. It does not use Java or the Log4j library.
Wikipedia has an article: https://en.wikipedia.org/wiki/Log4j