An open source Java-based software tool available from the Apache Software Foundation designed to log security and performance information. Vulnerabilities in Log4j came to light and began undergoing widespread criminal and nation-state exploitation in December 2021.
