AVG-2624 log

Package openfire
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 4.6.4-1
Fixed 4.6.5-1
Current 4.9.2-1 [extra]
Ticket FS#72975
Created Sun Dec 12 21:03:48 2021
Issue Severity Remote Type Description
CVE-2021-44228 Critical Yes Arbitrary code execution
Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI...