Jump to content

Log4Shell

From Simple English Wikipedia, the free encyclopedia
Revision as of 16:30, 23 December 2021 by Neptunepie (talk | changes) (Kolva moved page Log4shell to Log4Shell: I had mistyped the capitalization. )

Log4shell (CVE-2021-44228), is a zero-day vulnerability in Log4j, a logging framework in Java. People have figured out that you can abuse this vulnerability to execute remote code. On 24 November 2021, Chen Zhaojun of Alibaba's Cloud's security team told Apache about this. It has been publicly disclosed since December 9th, 2021. [1]Apache has given this vulnerability a 10, the highest rating.

  1. Newman, Lily (12.10.2021 02:54 PM). "'The Internet Is on Fire'". Wired. Retrieved 12/23/21. {{cite news}}: Check date values in: |access-date= and |date= (help)CS1 maint: url-status (link)
Retrieved from "https://simple.wikipedia.org/w/index.php?title=Log4Shell&oldid=7920623"