Subject: Apache Log4j2 Vulnerability - CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-44832 - ESA-2021-31 Note - We will update this announcement with new details as they emerge from our analysis. Please check back periodically. Update Log Dec 16, 2021 - 04:20 UTC - Update Summary: ECK 1.9 released which automatically adds the JVM option to impacted Elasticsearch clusters managed by EC
![Apache Log4j2 Remote Code Execution (RCE) Vulnerability - CVE-2021-44228 - ESA-2021-31](https://cdn-ak-scissors.b.st-hatena.com/image/square/d3b1b9017acf49882656f045527cd1572c01a3ae/height=288;version=1;width=512/https%3A%2F%2Fglobal.discourse-cdn.com%2Felastic%2Foriginal%2F3X%2F5%2F4%2F5461df8fd2fe783981b0180332821184b729980e.png)