CUSTOMER ALERT – Information on CVE-2021-44228: Remote Code Injection on Log4j

By December 10, 2021 Alerts, Blog, News

Customer Alert 12/10/2021

What is CVE-2021-44228 about?
Posted in the GitHub Advisory Database, CVE-2021-44228 explains how Log4j versions prior to
2.15.0 are subject to a remote code execution vulnerability via the ldap JNDI parser


This document will open shortly, there is no need for you to do anything.




Author Waratek

Some of the world’s leading companies use Waratek to patch, secure and upgrade their mission critical web applications using our next generation technology. Waratek makes it easy for security teams to instantly patch known Java and .NET flaws with no downtime, protect their applications from known and Zero Day attacks, and virtually upgrade out-of-support Java applications – all without time consuming and expensive source code changes or unacceptable performance overhead.

More posts by Waratek