Couple of hours ago, a remote code execution vulnerability in Apache Log4j2 (Used by Java and Minecraft) appeared on the Internet. An attacker can use this vulnerability to construct a special data request packet and send it through Minecraft Chat, which eventually triggers remote code execution. (Allowing someone to execute code on a server and your client)
All servers on our network are restarting as we speak to fix this issue on our end
BUT WAIT this does not just affect servers, this can execute on your Minecraft Client as well. Add this into your JVM Arguments of your launcher to be safe on other servers:
Video on how to do so:
It is recommended you do this for each "installation" you use.
THIS HAS BEEN FOUND AS FAR BACK AS 1.8
A majority of server versions are receiving patches mostly back to 1.16, some back to 1.12, I have seen none for servers running before 1.12. Protect yourself so you don't have to rely on servers to do so
Any questions or assistance with this feel free to ping me on Discord, DM me, or send me a message on here.
Last edited: about 1 month ago