The CVE-2017-4157 refers to an unspecified vulnerability in a Java logging library. The exact nature of this vulnerability is not specified in the advisory, but it's likely related to a potential information disclosure or denial-of-service issue.
The CVE-2017-4157 refers to an unspecified vulnerability in a Java logging library. The exact nature of this vulnerability is not specified in the advisory, but it's likely related to a potential information disclosure or denial-of-service issue.
Version info not stated in advisory.
Check with: find / -name "log4j*.jar" 2>/dev/null
or by examining your project's dependencies and looking for any versions of the affected library.
The fix source is not specified in the advisory. It's recommended to contact the vendor or a trusted security researcher for more information on how to patch this vulnerability.