VYPR
Unrated severityNVD Advisory· Published Apr 19, 2022· Updated Sep 16, 2024

Log4j hot patch package privilege escalation

CVE-2021-3100

Description

The Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.1-13 didn’t mimic the permissions of the JVM being patched, allowing it to escalate privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.