A recent vulnerability in the Apache Log4j software library has been deemed a critical remote code execution vulnerability. This vulnerability, also known as ‘CVE-2016-5880’, is prevalent in enterprise and consumer services, websites, and operational technology products. It enables an unauthenticated remote actor to take control of the affected system. To learn more about the vulnerability, see the official advisory or read the full document below.
The vulnerability in Apache Log4j is found in the default configuration of many products, including Apache Druid and Apache Flink. It affects thousands of organizations. Security researchers have discovered that malicious software can be triggered by a specific JNDI string. It has been attributed to the compromise of the Minecraft servers, which was restricted to the Log4j vulnerability until December 9, 2021. The vulnerability has been exploited millions of times, according to the researchers.
In August 2015, the CISA released a security advisory detailing the issue. It warns against installing older versions of Apache Log4j, as these versions may not have fixed the underlying security issue. The update also resolves a number of known vulnerabilities with the log system. The new version of Log4j includes a number of security fixes and bug fixes, as well as fixes for a number of other issues. If you’re running Log4j 1.2, be sure to upgrade to the latest version.
Security researchers report that the vulnerability is present in three different forms. One vulnerability affects a Java application and enables control over the data stored in the Thread Context Map. A malicious user can use this vulnerability to execute arbitrary code on a system. This vulnerability may also affect the Apache Struts web application framework. If the vulnerability is present in these applications, it could lead to a denial of service attack. The patch for this vulnerability has been released, but many security experts are skeptical about the fix.
Another critical vulnerability affects the Java logging audit framework Apache Log4j. A remote attacker could exploit the vulnerability to execute arbitrary code as the Log4j user or root. These vulnerabilities are rated as critical vulnerabilities by the CVSS v3 calculator, which means that they can be automatically exploited by malicious attackers. If you are using this logging library in your organization, it’s crucial to patch it immediately.
Despite the severity of the vulnerability, Supermicro products are not affected. These products include Supermicro Server Manager, SuperDoctor, and the vCenter Plug-in. The company’s security team is closely monitoring the situation and will update this bulletin if new information becomes available. The security advisory is available at the GitHub website. It’s a good time to upgrade your servers if you’re concerned about security.
A new vulnerability in the Apache Log4j logging library has been identified as CVE-2021-44228. An attacker can use this vulnerability to execute arbitrary code by modifying the user-agent string in the log messages. This vulnerability is also present in many products from some well-known technology vendors. These vendors must update their products immediately to prevent these vulnerabilities from causing serious damage to their customers. The UpGuard survey focuses on a critical vulnerability in Apache Log4j, which affects many third-party vendors.
