Remote code injection in Log4j (CVE-2021-44228) – Vulnerability Alert

Summary

Log4j versions prior to 2.15.0 are subject to a remote code execution vulnerability via the ldap JNDI parser. The vulnerability is referenced as CVE-2021-44228.

Exploited in the wild

YES! There is evidence of it being exploited in the wild.

Supported protocols:

{jndi:ldap:/
{jndi:rmi:/
{jndi:ldaps:/
{jndi:dns:/
{jndi:iiop:/
{jndi:http:/
{jndi:nis:/
{jndi:nds:/
{jndi:corba:/

How to fix

Update to 2.15.0 or newer.

References

About the application

According to Wikipedia, Apache Log4j is a Java-based logging utility. It was originally written by Ceki Gülcü and is part of the Apache Logging Services project of the Apache Software Foundation. Log4j is one of several Java logging frameworks.


[email protected]

get in touch