Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache Log4j Remote Code Execution via Log Messages
MINI-h8m4-hhjj-34xr
Summary
Apache Log4j library is vulnerable to a remote code execution attack when processing certain types of log messages. This means an attacker could potentially inject malicious code into your system by submitting a specially crafted log message. To protect your system, update to the latest version of Apache Log4j as soon as possible.
What to do
- Update openclaw to version 2026.3.7-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | openclaw | <= 2026.3.7-r0 | 2026.3.7-r0 |
Original title
MINI-h8m4-hhjj-34xr
Published: 8 Mar 2026 · Updated: 13 Mar 2026 · First seen: 8 Mar 2026