...
| Info |
|---|
According to this article, and this blog post, if the server has Java runtimes later than 8u121, then it is protected against remote code execution via JNDI. |
If you are running DualShield 6.4 and cannot upgrade to the latest update 6.4.20.1212 immediately, then you should add "log4j2.formatMsgNoLookups=true" into the JAVA system environment and restart the DualShield service after the change.
Actions taken by the DualShield team
...