Extremely Critical Log4J Vulnerability Leaves Much of the Internet at Risk

11 December 2021

The Apache Software Foundation has released fixes to contain an actively exploited zero-day vulnerability affecting the widely-used Apache Log4j Java-based logging library that could be weaponized to execute malicious code and allow a complete takeover of vulnerable systems. Tracked as CVE-2021-44228 and by the monikers Log4Shell or LogJam, the issue concerns a case of unauthenticated, remote code execution (RCE) on any application that uses the open-source utility and affects versions Log4j 2.0-beta9 up to 2.14.1.

Read full article on The Hacker News

Date:

11 December 2021

Categorie(s):

NEWS

Tag(s):

Critical, Internet, Java, Leaves, Programming

Best Identity Theft Protection and Monitoring Services for 2024: Aura Is Our New Winner – CNET3 May 2024
Three insights you might have missed from theCUBE’s coverage of Dell Technologies’ ‘Building Cyber Resilience’ event3 May 2024
AWS is issued a renewed certificate for the BIO Thema-uitwerking Clouddiensten with increased scope3 May 2024
Ahead of RSA, Menlo Security announces partnership with Google Cloud for better browser security3 May 2024
It may take decade to shore up software supply chain security, says infosec CEO3 May 2024