A new ‘extremely critical vulnerability’ has emerged in the log4j library.
I ran this command on my server to discover that the rocket.chat service may be relying on this library.
philipp@myserver:~$ sudo find / -name "log4j*" /snap/rocketchat-server/1491/programs/server/npm/node_modules/moleculer/src/loggers/log4js.js
Would anybody be able to confirm whether that’s correct? Do I need to be worried?