Log4J and Bash Injection attempts from Unifi Devices against the Controller
In the last week I have had Log4J and Bash Injection attempts being reported by my Meraki MX100 from my Unifi Devices (AP's and 8 Port Switches) against the Unifi Controller.
The notices are coming from several sites (all traffic is private over VPN, No part of the system is exposed publicly to the internet) I suspect these are false alerts by Meraki but how can I determine that 100%? Has anyone else noticed similar events?
The Controller is a windows VM running version 126.96.36.199 which is the latest version that is patched against Log4J