📚 CVE-2023-26464 | Apache Log4j up to 1.6 Chainsaw/SocketAppender resource consumption

A vulnerability was found in Apache Log4j up to 1.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Chainsaw/SocketAppender. The manipulation leads to resource consumption. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2023-26464. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component. ...