Attack Surface Monitoring - Log4j
Avertium LLC. | 12/17/2021Friday, December 10, 2021, a critical zero-day vulnerability was found in the Apache Log4j Java-based logging library. CVE- 2021-44228, now known as Log4Shell, is an unauthenticated remote code execution (RCE) vulnerability that allows for complete system takeover on systems with Log4j 2.0-beta9 up to 2.14.1. Since the vulnerable log4j library is embedded in thousands of applications, a vast number of organizations are vulnerable to attack and may not have a means of determining their exposure. If your organization is vulnerable, an attacker can very easily compromise the vulnerable systems and gain control of your network.
To read more, please log in
Related Content
Featured
This site is operated by NetDiligence®. Links found within this site may open a new browser window and take you outside the Sompo International's Cyber Risk Portal to another website, the contents of which are maintained by third parties over whom NetDiligence and Sompo International have no control. We provide links to these external sites for your convenience and awareness. We accept no responsibility for the content of linked sites. Upon request of the content source, we will remove links.
© =date('Y');?> NetDiligence®, A Company of Network Standard Corporation