I’ve just received the email below from Payara confirming that Payara Server is not affected by the log4j vulnerability.
Cheers,
Kevin
From: The Payara Team <comm...@payara.fish>
Sent: 14 December 2021 16:44
To: Phipps, Kevin (STFC,RAL,SC) <kevin....@stfc.ac.uk>
Subject: Payara products unaffected by Log4j vulnerability
The recently reported Log4J vulnerability does not effect Payara Enterprise or Payara Community versions of Payara Server and Payara Micro.
|
This email and any attachments are intended solely for the use of the named recipients. If you are not the intended recipient you must not use, disclose, copy or distribute this email or any of its attachments and should notify the sender immediately and delete this email from your system. UK Research and Innovation (UKRI) has taken every reasonable precaution to minimise risk of this email or any attachments containing viruses or malware but the recipient should carry out its own virus and malware checks before opening the attachments. UKRI does not accept any liability for any losses or damages which the recipient may sustain due to presence of any viruses.