Log4j was affected by a vulnerability that allowed Remote Code Execution (RCE) attacks. In short, user inputs into a software could lead to a code execution on a remote server. This represents a severe security risk. It was named “Log4Shell” (CVE-2021-44228) and immediately addressed by the Log4j team, who provided a fix. In the following […]
Greenbone’s vulnerability management finds applications with Log4j vulnerabilities in systems that definitely need to be patched or otherwise protected. Depending on the type of systems and vulnerability, these can be found better or worse. Detection is also constantly improving and being updated. New breaches are found. Therefore, there may always be more systems with Log4Shell […]
https://www.greenbone.net/wp-content/uploads/Gb_New-logo_horizontal_head.png00Elmar Geesehttps://www.greenbone.net/wp-content/uploads/Gb_New-logo_horizontal_head.pngElmar Geese2021-12-17 09:42:112023-05-24 12:50:27Scanning for Vulnerabilities like Log4Shell – How Does It Work?
Update from 2021-12-20: information about additional vulnerabilities found for Log4j can be found here. Update from 2021-12-20: vulnerability tests for products running on Microsoft Windows are now available. Note: The tests check the existence of Log4j and its version. A separate vulnerability test may not be available for each affected application, but all Log4j files […]
https://www.greenbone.net/wp-content/uploads/Gb_New-logo_horizontal_head.png00Elmar Geesehttps://www.greenbone.net/wp-content/uploads/Gb_New-logo_horizontal_head.pngElmar Geese2021-12-14 18:22:392021-12-23 10:09:56In-Depth Information About Greenbone’s Log4j Vulnerability Test Coverage
Additional Log4j Vulnerabilities Published
BlogLog4j was affected by a vulnerability that allowed Remote Code Execution (RCE) attacks. In short, user inputs into a software could lead to a code execution on a remote server. This represents a severe security risk. It was named “Log4Shell” (CVE-2021-44228) and immediately addressed by the Log4j team, who provided a fix. In the following […]
Scanning for Vulnerabilities like Log4Shell – How Does It Work?
BlogGreenbone’s vulnerability management finds applications with Log4j vulnerabilities in systems that definitely need to be patched or otherwise protected. Depending on the type of systems and vulnerability, these can be found better or worse. Detection is also constantly improving and being updated. New breaches are found. Therefore, there may always be more systems with Log4Shell […]
In-Depth Information About Greenbone’s Log4j Vulnerability Test Coverage
BlogUpdate from 2021-12-20: information about additional vulnerabilities found for Log4j can be found here. Update from 2021-12-20: vulnerability tests for products running on Microsoft Windows are now available. Note: The tests check the existence of Log4j and its version. A separate vulnerability test may not be available for each affected application, but all Log4j files […]