Portfolio, Log4j, Apache vulnerabilities