diff --git a/rules/web/web_cve_2021_44228_log4j_fields.yml b/rules/web/web_cve_2021_44228_log4j_fields.yml
index 512286cb5..bf8db9f4f 100644
--- a/rules/web/web_cve_2021_44228_log4j_fields.yml
+++ b/rules/web/web_cve_2021_44228_log4j_fields.yml
@@ -114,7 +114,7 @@ detection:
          - '${${lower:j}ndi:${lower:l}${lower:d}a${lower:p}://'
          - '${${upper:j}ndi:${upper:l}${upper:d}a${lower:p}://'
          - '${${::-j}${::-n}${::-d}${::-i}:'
-   condition: condition: 1 of selection*
+   condition: 1 of selection*
 falsepositives:
     - Vulnerability scanning
 level: high