...
| Info |
|---|
According to this article, and this blog post, if the server has Java runtimes later than 8u121, then it is protected against remote code execution via JNDI. |
Actions recommended to DualShield customers
In general, you should always upgrade your DualShield to the latest update as soon as possible. If To be safe, if you are running DualShield 6.4 and cannot upgrade to the latest update 6.4.20.1212 immediately, then you should add "log4j2.formatMsgNoLookups=true" into the JAVA system environment and restart the DualShield service after the change.
...