According to 9to5Mac, Apple has closed a critical Log4Shell vulnerability in the Log4j logging library in the iCloud cloud storage, which is used by many Java web applications.

Log4Shell vulnerability (CVE-2021-44228) affects all systems and services that use the Java logging library, Apache Log4j between versions 2.0 and 2.14.1, including many services and applications written in Java. With its help, attackers can gain access to the web server without a password.

It is noteworthy that Apache promptly released the Log4j 2.15.0 update and almost immediately issued the second release of the Log4j 2.16.0 library in December, which closed the Log4Shell vulnerability.

Currently, specialists from the information security company Check Point record about a hundred attempts to exploit vulnerabilities per minute on various servers in the network.

An updated list of IP addresses has been published on Github, and there are attempts to exploit the Log4Shell vulnerability. Now there are more than 2200 IP-addresses in the records.

The list of platforms and software versions affected by the Log4Shell vulnerability even includes antivirus software from ESET.

According to OpenNET, the Apache Software Foundation, in a summary report on projects that affect a critical vulnerability in Log4j 2, indicated the following Apache projects: Archiva, Druid, EventMesh, Flink, Fortress, Geode, Hive, JMeter, Jena, JSPWiki, OFBiz, Ozone , SkyWalking, Solr, Struts, TrafficControl and Calcite Avatica. In addition, the vulnerability also affected GitHub products, including GitHub.com, GitHub Enterprise Cloud, and GitHub Enterprise Server.

On December 13, the developers of the information security company BI.ZONE published a scanner for Log4j on GitHub. It helps to understand which applications and servers in the IT infrastructure are vulnerable.

bbabo.Net