CVE-2021-44228 - Apache Log4j2 Remote Code Execution Vulnerability

Vulnerability Name

Apache Log4j2 Remote Code Execution Vulnerability

Description

Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.

Known To Be Used in Ransomware Campaigns?

Known

Action

For all affected software assets for which updates exist, the only acceptable remediation actions are: 1) Apply updates; OR 2) remove affected assets from agency networks. Temporary mitigations using one of the measures provided at https://www.cisa.gov/uscert/ed-22-02-apache-log4j-recommended-mitigation-measures are only acceptable until updates are available.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-44228

Related News Articles

768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023February 3, 2025

What 2024 taught us about security vulnerabiltiesJanuary 14, 2025

Emerging Threats & Vulnerabilities to Prepare for in 2025December 26, 2024

Zero-days dominate top frequently exploited vulnerabilitiesNovember 14, 2024

Anatomy of an AttackAugust 20, 2024