Get a Pentest and security assessment of your IT network.

News

Log4j 2.17.1 out now, fixes new remote code execution bug

Apache has released another Log4j version, 2.17.1, fixing a newly discovered remote code execution (RCE) vulnerability in 217.0, tracked as CVE-2021-44832. The vulnerability stems from the lack of additional controls on JDNI access in log4j. Security researcher Yaniv Nizry claimed credit for reporting the vulnerability to Apache: “Stay tuned for a blogpost 😉 pic.com/D56WpWpVsuF3” Security expert Kevin Beaumont labeled the instance another “failed Log4J disclosure in motion” during the holidays.”]

Source: https://www.bleepingcomputer.com/news/security/log4j-2171-out-now-fixes-new-remote-code-execution-bug/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Take note, next week update Adobe Reader and Acrobat to fix critical flaws

News

Linux bug leaves 1.4 billion Android users vulnerable to hijacking attacks