Is Jenkins vulnerable to the log4j CVE-2021-44228

Does anyone know if Jenkins is vulnerable to the new major log4j CVE:


NVD - CVE-2021-44228

If so, are there any workarounds or what can we do to mitigate any risk from this CVE?

I hope that this is the right place to ask this, if not, please let me know and I can go there.

short answer: no

Annoucment from security team

Mailing list its worth being on:

Also Apache Log4j 2 vulnerability CVE-2021-44228