Tag: Log4Shell

Log4Shell Vulnerability

Summary: On Dec. 9, 2021, Proof of Concept exploitation code for the remote code execution (RCE) vulnerability (CVE-2021-44228) in Apache Log4j was published to GitHub. Shortly thereafter, there was evidence of widespread exploitation, across the internet. Apache Log4j is a widely used library, that allows for easy logging of events within Java applications. One commonly used feature is that the library can retrieve information from remote servers and update log messages with said information.......

Read More