Hi Nish,
CA Release Automation(CARA), a.k.a. Nolio (all supported versions) is not affected by this vulnerability (CVE-2021-44228) as the Log4j version used in Nolio is outside the affected range (Log4j 2.0 - 2.14.1).
CA Release Automation(CARA), a.k.a. Nolio (all supported versions) is not affected by this vulnerability (CVE-2021-4041) as it only affects Log4j 1.2 when specifically configured to use JMSAppender - which is not used in Nolio.
Please refer the KB for more details https://knowledge.broadcom.com/external/article?articleId=230302
Let us know in case of any further query.
Regards,
Saurabh