Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache Log4j: Unauthenticated Remote Code Execution via Sensitive Data Exposure
Summary
Apache Log4j, a popular logging library for Java applications, contains a flaw that could allow an attacker to inject malicious code into a vulnerable system. This could potentially allow an attacker to take control of the system or steal sensitive data. To protect your system, update to the latest version of Apache Log4j as soon as possible.
What to do
- Update chainguard chromium to version 147.0.7727.101-r0.
- Update wolfi chromium to version 147.0.7727.101-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Chainguard | chainguard | chromium |
< 147.0.7727.101-r0 Fix: upgrade to 147.0.7727.101-r0
|
| Wolfi | wolfi | chromium |
< 147.0.7727.101-r0 Fix: upgrade to 147.0.7727.101-r0
|
Original title
CGA-4hvq-2ggh-8hw2
Published: 17 Apr 2026 · Updated: 17 Apr 2026 · First seen: 17 Apr 2026