How to Find and Mitigate Log4j (CVE-2021–44228) in applications

Log4j is a Java library used to do logging. It was recently found to have a vulnerability (CVE-2021–44228) that allows an attacker to take over your web server (or any device it runs on) and run commands from the device. Unfortunately, it is present in many, many applications and services all over the internet.

Update:

The Log4j team has been made aware of a security vulnerability, CVE-2021–45046 ( fix to address CVE-2021–44228 in Apache Log4j 2.15.0 was incomplete in certain non-default

--

--

--

I am passionate about Technology, Cloud Computing, Machine Learning, Blockchain and Finance. All opinions are my own and do not express opinions of my employer.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

New features and privacy enhancement in KILT

Daily links of Fernand0 — Enlaces diarios de Fernand0 — Issue #306

The Healthcare Industry Has Been Ravaged by Data Breaches and Should Expect More, but Blockchain…

Ballet x Malca-Amit

Tips About Web3 From Industry Experts

Anatomy of Cryptolocker Ransomware

Cracking SSH known_hosts file using Hashcat

Thank you VoskCoin for featuring @PrivacySwap.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Eray ALTILI

Eray ALTILI

I am passionate about Technology, Cloud Computing, Machine Learning, Blockchain and Finance. All opinions are my own and do not express opinions of my employer.

More from Medium

Insecure Java Deserialization

Log4j vulnerability

What are XPath Injections and How to Avoid Them

How to do Performance and Load Testing on your REST API in simple way