Log4j - a TLDR summary for SME IT leaders
TLDR Log4J is a logging library for Java applications for which critical vulnerabilities was discovered. An unauthenticated remote actor could exploit this vulnerability to take control of an affected system. On December 10, 2021, Apache released Log4j 2.15.0 for Java 8 users to address a remote code execution (RCE) vulnerability—CVE-2021-44228. On December 13, 2021, Apache released Log4j 2.12.2 for Java 7 users and Log4j 2.16.0 for Java 8 users to address a RCE vulnerability