On December 9, 2021, the Log4j vulnerability, tracked as CVE-2021-44228, was publicly revealed via the project’s GitHub. More than 2.5 billion devices running Java, coupled with the fact this vulnerability is extremely easy to exploit, means the impact is likely very far reaching.
This eBook covers everything Randori knows about log4j to this point. This is a highly dynamic situation, and guidance that was valid and correct at one point can very quickly become outdated. Read this ebook for details and follow us on Twitter for real-time updates. If you think you might be exposed to Log4j, get a free Log4j Attack Surface Review.