SharePoint & Log4j - CRITICAL: Security Vulnerability
A new Log4j vulnerability was disclosed the night between Dec 17 and 18 2021 by the Apache security team, and was given the ID of CVE-2021-45105. According to the security advisory, which fixed the two previous vulnerabilities, is susceptible to a DoS attack caused by a Stack-Overflow in Context Lookups in the configuration file’s layout patterns. Is it affecting SharePoint? Microsoft continues the analysis of the remote code execution vulnerabilities related to Apache Log4j (a logging tool used in many Java-…