Jump to content

Log4Shell

From Simple English Wikipedia, the free encyclopedia
Revision as of 07:06, 6 January 2022 by Auntof6Bot (talk | changes) (Missing/miscoded ref display (WP ck error 3) and/or general cleanup using AWB)

Log4shell (CVE-2021-44228), is a zero-day vulnerability in Log4j, a logging framework in Java. People have figured out that you can abuse this vulnerability to execute remote code. On 24 November 2021, Chen Zhaojun of Alibaba's Cloud's security team told Apache about this. It has been publicly disclosed since December 9, 2021.[1] Apache has given this vulnerability a 10, the highest rating.

References

  1. Newman, Lily (2021-12-10). "'The Internet Is on Fire'". Wired. Retrieved 2021-12-23.{{cite news}}: CS1 maint: url-status (link)
Retrieved from "https://simple.wikipedia.org/w/index.php?title=Log4Shell&oldid=7948321"