Cybersecurity
DevOps Cloud
IT Operations Cloud
Two potential vulnerabilities have been identified in the Apache log4j library used by HCMX.
The vulnerability (CVE-2021-44228): Apache Log4j2 could be exploited to allow remote code execution.
The vulnerability (CVE-2021-45046): Apache Log4j2 Thread Context Lookup Pattern vulnerable to remote code execution in certain non-default configurations.