CVE-2025-68161 | Apache Log4j up to 2.25.2 Socket Appender certificate validation

A vulnerability categorized as critical has been discovered in Apache Log4j up to 2.25.2. Affected by this vulnerability is an unknown functionality of the component Socket Appender. Such manipulation leads to certificate with host mismatch.

This vulnerability is documented as CVE-2025-68161. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More