...
| Info |
|---|
According to this article, and this blog post, if the server has Java runtimes later than 8u121, then it is protected against remote code execution via JNDI. |
If To be safe, if you are running DualShield 6.4 and cannot upgrade to the latest update 6.4.20.1212 immediately, then you should add "log4j2.formatMsgNoLookups=true" into the JAVA system environment and restart the DualShield service after the change.
...