Jump to content

Log4Shell

From Simple English Wikipedia, the free encyclopedia
Revision as of 23:46, 21 August 2023 by Pure Evil (talk | changes) (References)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Log4shell (CVE-2021-44228), is a zero-day vulnerability in Log4j, a logging tool in Java. People have figured out that you can abuse this vulnerability to execute remote code. On 24 November 2021, Chen Zhaojun of Alibaba's Cloud's security team told Apache about this. It has been publicly disclosed since December 9, 2021.[1] Apache has given this vulnerability a 10, the highest rating.

References

[change | change source]
  1. Newman, Lily (2021-12-10). "'The Internet Is on Fire'". Wired. Retrieved 2021-12-23.
Retrieved from "https://simple.wikipedia.org/w/index.php?title=Log4Shell&oldid=9017632"