[
https://issues.apache.org/jira/browse/LOG4J2-3219?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17458747#comment-17458747
]
Volkan Yazici commented on LOG4J2-3219:
---------------------------------------
Please note that Log4j 1.x reached its end-of-life in 2015 and you take a huge
risk by running such an outdated and unmaintained software. We strongly advise
you to upgrade to the most recent Log4j 2 release.
> CVE-2021-44228 on log4j version 1.2.17
> --------------------------------------
>
> Key: LOG4J2-3219
> URL: https://issues.apache.org/jira/browse/LOG4J2-3219
> Project: Log4j 2
> Issue Type: Question
> Environment: log4j version 1.2.17
>
> Reporter: Arun Naik
> Priority: Major
>
> Hi,
> We are exploring CVE-2021-44228.
> We are using log4j version 1.2.17.
> We have not configured JMS-Appender in the log4j.xml conf file.
> Is our application affected by CVE-2021-44228?
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
