Hi @Josue,
Please note that older patches of several versions are susceptible to the recent Log4Shell vulnerability that we first announced here: Urgent Log4j server security vulnerability - REQUIRES IMMEDIATE ATTENTION!
From a security perspective we would not recommend using patches below 2.36.6. If you have to use a lower version for compatibility reasons, please consider 2.35.11 instead. If you must use a lower 2.36 patch, then at the very least make sure you have the JAVA_OPTS mitigation in place*.
[*ADDED NOTE: Due to the complexity of Log4Shell exploits we cannot be certain that the JAVA_OPTS mitigation provides full protection; the best way to ensure 100% protection is to use the latest patch for the desired version]
Kind regards,
Phil