Forum OpenACS Development: OpenACS and Log4j Security Vulnerabilities
OpenACS is safe against Log4j Security Vulnerabilities.
OpenACS contains very little (and mostly obsolete) Java software, which is not vulnerable. We still ship e.g. the java implementation for chat for backwards compatibility, which should be fully removed in upcoming releases.
all the best