It is:L. Mark Stone wrote: 1.2.16 version of Log4j used by Zimbra is NOT subject to this exploit.
https://github.com/apache/logging-log4j ... -990494126
It is:L. Mark Stone wrote: 1.2.16 version of Log4j used by Zimbra is NOT subject to this exploit.
I don't see an option to send you a PM. Might be as my account is new or something. Am happy to send you infos to replicate it yourself.L. Mark Stone wrote: If anyone can prove otherwise, please send me a private message and I will get this escalated within Synacor.