News

ZDNet3y
Apache releases new 2.17.0 patch for Log4j to solve denial of service vulnerability | ZDNET
They said the severity is "high" and gave it a CVSS score of 7.5. "Apache Log4j2 versions 2.0-alpha1 through 2.16.0 did not protect ... They noted that only the Log4j-core JAR file is impacted ...