Try Free

Quick Fire Java: Java After Log4j

Jakarta EE
Priya Khaira-Hanks
Published: 18 Feb 2022
Updated: 21 Oct 2025

The second episode in our ‘Quick Fire Java’ video series is out!

We discuss Log4j, security process and prioritization, and how Payara dealt with the vulnerability.

All in a concise 10-minute video.

TheLog4jvulnerability,Log4Shell, was disclosed in early December 2021 and the repercussions have been far-reaching.

Rudy,ourProduct Managerat Payara, explains more about what this actually means and about the wider implications of the incident. He also responds toBreachQuest’sJake Williams for Threatpost, who claimed “being exploited through an internet-facing system running vulnerable log4j at this point is a leadership failure, not a technical one.”Watch the video to find out whether Rudy agrees.

It’s worth stressing that we have checked all Payara products and they are not affected by the vulnerability, but we recommend that you upgrade to the latest version of the library if you ARE using it. Read morehere.

Watch the video now:

 

This is the second in a series where we’ll ask key questions on subjects that matter to our community, for example aroundJava,Jakarta EE(previously Java EE), MicroProfile, DevOps, DevSecOps, database management and cloud. We’ll quiz an expert each month to create a concise 10-minute video.

Make Sure You Are Following Our YouTube for Updates:

Share:

Download Payara Platform Community

Comments (0)

Post a comment

Your email address will not be published. Required fields are marked *

Payara needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Legal & Privacy Policy.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Related Posts

Blog 15 Step Journey 4 minutes
Jakarta EE
Diego Silva
21 Jan 2026

Building a Modern Enterprise App with Payara: A 15-Step Journey 

Learning Jakarta EE can sometimes feel like solving a puzzle. You have JPA, CDI, REST, Security, and Docker... but how do they all fit together in a real-world scenario? 

Read More
Cut Jakarta EE Startup Times from Seconds to Milliseconds with CRaC 8 minutes
Jakarta EE
Luqman Saeed
13 Jan 2026

Cut Jakarta EE Startup Times from Seconds to Milliseconds with CRaC 

Jakarta EE applications can take anywhere from several seconds to over a minute to start, depending on their size […]

Read More
Stacked copies of the Payara developer guide “Zero Trust Architecture with Jakarta EE and MicroProfile” on an orange background, showing the dark blue cover design with the Payara logo and a laptop illustration featuring a shield and padlock icon. 4 minutes
Jakarta EE
Luqman Saeed
09 Jan 2026

Implementing Zero Trust Security with Jakarta EE: A Practical Guide

Zero Trust security has moved from buzzword to necessity. The principle is simple: never trust, always verify. But implementing […]

Read More