This content is viewable by Everyone
Apache Releases Update to Address a Second Vulnerability in the Log4j Utility
Apache has released an Important security update to address a second vulnerability in the Apache Log4j utility. Patch 2.16.0 has been released since the previous patch 2.15.0 did not fully remediate the vulnerability. A remote attacker could exploit this new vulnerability to cause a Denial of Service (DoS) attack.
For a complete description of the vulnerabilities and effected systems, visit CVE-2021-45046 Apache Log4j Security Vulnerability.