What's all this talk about Log4j?

What's all this talk about Log4j?
Tomas Lyngen
Published: 20 Dec 2021

An vulnerability was found in the popular tool Log4j and it's already being exploited

In the last couple of weeks, you might have heard many talking about Log4j

Log4j is developed by Apache Software Foundation and is an open-source logging tool for java applications

Who's affected?


So many applications today are using Log4j, you might not even know it's there and that's why the impact this time is so high

There's already proof that people are taking advantages of the vulnerabilities in Log4j and why many companies are rushing to upgrade. But it takes time to roll out the fixes, for some institutes such as banks it can take months before a new fix is applied. As it needs to go through rigorous testing, before it can be applied in a live environment

Affected versions of Apache Log4j is 2.0 to 2.14.1



Tags: #Apache #Log4j #Vurnability

We sometimes publish affiliate links and these always needs to follow our editorial policy, for more information check out our affiliate link policy

You might also like

Comments

Sign up or Login to post a comment

There are no comments, be the first to comment.