Hi All, I wonder if you guys have heard about this vulnerability https://www.randori.com/blog/cve-2021-44228/ affecting log4j v1 and v2 as far as i can see kafka 2.7 and 2.8 are using log4j v1. which is only affected if using jms appender.
any thoughts? Thanks!
