QID 198604

Date Published: 2021-12-15

QID 198604: Ubuntu Security Notification for Apache Log4j 2 Vulnerability (USN-5192-1)

Apache log4j 2 allows remote attackers to runprograms via a special crafted input.

An attacker could use this vulnerabilityto cause a denial of service or possibly execute arbitrary code.

  • CVSS V3 rated as Critical - 10 severity.
  • CVSS V2 rated as Critical - 9.3 severity.
  • Solution
    Refer to Ubuntu security advisory USN-5192-1 for updates and patch information.
    Vendor References

    CVEs related to QID 198604

    Software Advisories
    Advisory ID Software Component Link
    USN-5192-1 Ubuntu Linux URL Logo ubuntu.com/security/notices/USN-5192-1