bvj

Is this an apple or an orange?  And do you know which ESET software uses tomcat?  

./usr/share/java/tomcat/log4j.jar

 

"As of December 11th, the Network Attack Protection feature in ESET security products on Windows was updated to detect the vulnerability. ESET has been blocking attempted attacks from 14:24 CET the same day."
https://twitter.com/cyb3rops/status/1469601401143803905
 

This is a 10.0 rated critical vulnerability:
https://blog.cloudflare.com/inside-the-log4j2-vulnerability-cve-2021-44228/