17Ara
Log4j Vulnerability FAQs
Type: Threat AnalysisLog4j Vulnerability FAQs
On December 9, 2021, the Apache Software Foundation released Log4j 2.15.0 to resolve a critical remote code execution vulnerability (CVE-2021-44228) that affects versions 2.0-beta9 through 2.14.1. Log4j is a popular Java logging library incorporated into a wide range of Apache enterprise software, including Struts2, Solr, Druid, and Flink.