The Apache Software Foundation released Apache version 2.16 which addresses an additional Apache Log4j vulnerability (CVE-2021-45046). Mitigation instructions from Apache for these Log4J vulnerabilities have evolved over time.