Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache Log4j Deserialization Vulnerability in Certain Java Applications
MINI-q448-jgfg-wghh
Summary
A Java application that uses the log4j library to log messages may allow an attacker to execute malicious code if they can control the input to the logger. This could happen if an attacker sends a specially crafted message to a server that uses this library. To protect against this, update the log4j library to the latest version or use a secure configuration.
What to do
- Update openclaw to version 2026.3.13.1-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | openclaw | <= 2026.3.13.1-r0 | 2026.3.13.1-r0 |
Original title
MINI-q448-jgfg-wghh
Published: 15 Mar 2026 · Updated: 15 Mar 2026 · First seen: 15 Mar 2026