CONTRIBUTOR

ARTICLE

United States: CRITICAL ALERT: Log4Shell

15 December 2021

by Cynthia J. Larose

Mintz

Your LinkedIn Connections
with the authors

To print this article, all you need is to be registered or login on Mondaq.com.

We want to make our readers and your security operations aware of a critical vulnerability that is actively being exploited in the wild.

CVE-2021-44228 can easily be exploited to gain complete access to the targeted system by getting the application to log a specially crafted string.

Government organizations and the private sector are responding to the disclosure of a critical vulnerability affecting the widely used Log4j logging utility, as exploitation attempts are on the rise.

Tracked as CVE-2021-44228 and dubbed Log4Shell - that can be exploited to gain complete access to the targeted system by getting the affected application to log a specially crafted string.

Palo Alto Networks has an analysis here.

The list of affected companies and software includes Apple, Tencent, Twitter, Baidu, Steam, Minecraft, Cloudflare, Amazon, Tesla, IBM, Pulse Secure, Ghidra, ElasticSearch, Apache, Google, Webex, LinkedIn, Oracle, Cisco and VMware. The list is being regularly updated.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

AUTHOR(S)

Cynthia J. Larose

Mintz

ARTICLE TAGS

United States Technology Security

POPULAR ARTICLES ON: Technology from United States

RELATED CONTENT

FREE News Alerts

Sign Up for our free News Alerts - All the latest articles on your chosen topics condensed into a free bi-weekly email.

Article Tags

United States Technology Security

Related Articles

The State Of AI In 2024 In 15 Graphs Foley & Lardner

Noted With Interest: Newly-Issued DFS Guidance On Banks Quinn Emanuel Urquhart & Sullivan

New CISA Cybersecurity Incident Reporting Requirements Proposed For Critical Infrastructure Companies Akin Gump Strauss Hauer & Feld LLP

Leveraging Artificial Intelligence - Part I: AI Vendor Contracts (Video) Carter Ledyard & Milburn

AI Regulatory And Legal Issues Today: A Conversation With Natasha Allen Foley & Lardner

Mondaq Webinars

MAY14

Asset Recovery and Judgment Enforcement: A Focus on 2024 Trends in the US and UK

JUN05

Killing the Paper Tiger – HR Toolbox for Running your German Operation Smoothly

Comparative Guides

Anti-Corruption & Bribery

Artificial Intelligence

Aviation Finance

Aviation Regulation

Banking Regulation

Mondaq Advice Centres

United States

Advertising and Marketing

United States

Telemarketing

United States

COVID-19

Global

Trademarks in SAARC Countries

United States

International Trade Law & Customs

Curated Content

Revolutionizing Resolution: The Transformative Impact Of AI On ADR
JAMS

Evolving Legal Norms For Artificial Intelligence In The European Union And The United States
Braumiller Law Group, PLLC

The Use Of AI In ADR: Balancing Potential And Pitfalls
JAMS

Assessing The Benefits And Challenges Of Tokenizing Real World Assets
Braumiller Law Group, PLLC

Knowing What's Ahead: Dispute Resolution Planning For Startups In The New Age Of Generative AI
JAMS

Upcoming Events

MAY20

Lunch & Learn – An AI Conversation

Foley & Lardner

Panel Silicon Valley United States

MAY28

Data Protection And Cybersecurity: Safeguarding Trade Secrets In The Digital Age

Seyfarth Shaw LLP

Webinar Chicago United States

More filters

Mondaq Social Media

© Mondaq® Ltd 1994 - 2024. All Rights Reserved.

Please to Mondaq or for unlimited free access and a complimentary news alert

|

|

|

|