AVG-2624 log
Package | openfire |
Status | Fixed |
Severity | Critical |
Type | arbitrary code execution |
Affected | 4.6.4-1 |
Fixed | 4.6.5-1 |
Current | 4.9.1-1 [extra] |
Ticket | FS#72975 |
Created | Sun Dec 12 21:03:48 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-44228 | Critical | Yes | Arbitrary code execution | Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI... |