Jump to content

Log4Shell

From Simple English Wikipedia, the free encyclopedia
Revision as of 16:28, 23 December 2021 by Neptunepie (talk | changes) (my favorite vulnerability of the year)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Log4shell (CVE-2021-44228), is a zero-day vulnerability in Log4j, a logging framework. People have figured out that you can abuse this vulnerability to execute remote code. On 24 November 2021, Chen Zhaojun of Alibaba's Cloud's security team told Apache about this. It has been publicly disclosed since December 9th, 2021.[1][1] Apache has given this vulnerability a 10, the highest rating.

  1. 1.0 1.1 https://www.mcafee.com/blogs/enterprise/mcafee-enterprise-atr/log4shell-vulnerability-is-the-coal-in-our-stocking-for-2021/
Retrieved from "https://simple.wikipedia.org/w/index.php?title=Log4Shell&oldid=7920618"