Get a Pentest and security assessment of your IT network.

News

Log4j 2.17.1 out now, fixes new remote code execution bug

Apache has released another Log4j version, 2.17.1, fixing a newly discovered remote code execution (RCE) vulnerability in 217.0, tracked as CVE-2021-44832. The vulnerability stems from the lack of additional controls on JDNI access in log4j. Security researcher Yaniv Nizry claimed credit for reporting the vulnerability to Apache: “Stay tuned for a blogpost 😉 pic.com/D56WpWpVsuF3” Security expert Kevin Beaumont labeled the instance another “failed Log4J disclosure in motion” during the holidays.”]

Source: https://www.bleepingcomputer.com/news/security/log4j-2171-out-now-fixes-new-remote-code-execution-bug/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2