Apache has published a security advisory, highlighting a vulnerability in the following products on the 10th of December 2021. It is recommended that you take the necessary precautions by ensuring your products are always updated.
Apache Log4j version 2.0-beta9 to 2.14.1
For more information on this update, you can follow this URL:
https://logging.apache.org/log4j/2.x/security.html
The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.
PDF Download: Apache Security Advisory.pdf
References
Apache security advisory (10th December 2021). Retrieved from Canadian Centre for Cyber Security.
https://www.cyber.gc.ca/en/alerts/apache-security-advisory-4
Apache security advisory (10th December 2021). Retrieved from Cybersecurity & Infrastructure Security Agency.