A Log4J Vulnerability affects Apache Servers with Java or cPanel Apache Solr Plugins

Modified on Fri, Dec 10, 2021 at 9:26 PM

Proof-of-concept exploits for a critical zero-day vulnerability in the ubiquitous 

Apache Log4j Java-based logging library are currently being shared online, 

exposing home users and enterprises alike to ongoing remote code execution attacks.


Log4j is developed by the Apache Foundation and is widely used by both 

enterprise apps and cloud services.


NYhost.net doesn't use Java nor cPanel Apache Solr plugin. Our shared, reseller and managed SD or managed VPS servers are not affected by this vulnerability.


However, if you have unmanaged dedicated server or VPS with us, we advise you to disable Tomcat Java and Apache Solr plugin via Web Hosting Manager (WHM).


Affected cPanel servers


cPanel servers with Apache Solr (full text search indexing for IMAP);

cPanel servers with Tomcat Java.


cPanel has not released security patch / hotfix yet. You should keep an eye on this thread.


Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article