Critical New 0-day Vulnerability in Popular Log4j Library Affecting Applications in Mass

preview_player
Показать описание
A serious 0-day Remote Code Execution exploit in log4j, the most popular java logging framework, was discovered today. Immediate action is needed from software maintainers.

Follow us-

#Sonatype #opensource #java
  1. Sonatype
Рекомендации по теме
critical windows 9.8 0:10:55

critical windows 9.8 exploit effects the ENTIRE TCP/IP STACK

the scariest Microsoft 0:01:00

the scariest Microsoft vulnerability (still no patch)

What is a 0:13:45

What is a Zero Day Threat?

Critical New 0-day 0:13:26

Critical New 0-day Vulnerability in Popular Log4j Library Affecting Applications in Mass

Firefox and Tor 0:09:32

Firefox and Tor hit with a MASSIVE exploit (9.8 CVSS)

Critical IPv6 Bug 0:09:02

Critical IPv6 Bug Found in Windows

MAX Prevents CRITICAL 0:03:25

MAX Prevents CRITICAL Zero-Day Vulnerability

CVE-2021–24084: CRITICAL ZERO-DAY 0:01:23

CVE-2021–24084: CRITICAL ZERO-DAY VULNERABILITY IN WINDOWS 10 (Mobile Device Management)

Urgent Windows Zero-Day 0:11:03

Urgent Windows Zero-Day Vulnerability: CVE-2024-49138

IMPORTANT Firefox 131.0.2 0:02:27

IMPORTANT Firefox 131.0.2 Emergency Security Update Patches a Critical Zero-Day!

Hackers Exploited Microsoft 0:10:51

Hackers Exploited Microsoft Zero Day Vulnerability For 18 Months!

URGENT: Critical Firefox 0:02:20

URGENT: Critical Firefox Zero-day Vulnerability – Update Now!

let’s play with 0:21:21

let’s play with a ZERO-DAY vulnerability “follina”

BREAKING NEW 0 0:01:47

BREAKING NEW 0 DAY RCE VULNERABILITY ON MICROSOFT EXCHANGE SERVER [2022]

Citrix Zero-Day Vulnerability 0:00:58

Citrix Zero-Day Vulnerability Exploited

#Unveiling a #Critical 0:00:53

#Unveiling a #Critical #GNOME #security #Vulnerability Time to Update Now

What are Zero 0:05:07

What are Zero Day Attacks?

Palo Alto Networks 0:00:18

Palo Alto Networks Addresses Critical Zero Day Vulnerability

[Hindi] ⚠Warning⚠ - 0:01:24

[Hindi] ⚠Warning⚠ - Two Unpatched Critical 0 Day RCE Flaws affect all Windows Versions

Update Chrome NOW! 0:00:35

Update Chrome NOW! Critical CVE-2024-7965 Vulnerability Actively Exploited

🚨Critical Cisco #Zero-Day 0:04:13

🚨Critical Cisco #Zero-Day #Vulnerability #CVE-2023-20198 Explained 🚨#CISAKEV #mitigation detection...

Critical Windows Vulnerability 0:00:50

Critical Windows Vulnerability Exploited: How to Stay Safe | Check Point Discovery

UPDATE!!! 0 . 0:00:52

UPDATE!!! 0 . 0 . 0 . 0 Day – 18 Yr Old Vulnerability Let Attackers Bypass All Browser Security

Critical Zero-Day in 0:11:48

Critical Zero-Day in Chrome

Комментарии
Автор

Really nicely done explanation. Thank you.

davidhladky
Автор

Does the JNDI url need to be the full string being logged or could it be just a part of a logged string?

lefteriseleftheriades
Автор

Affected Apache log4j Versions​
2.0 <= Apache log4j <= 2.14.1

kk
Автор

Bleh. Ty for the update, but can we save world-ending bugs for movie and game plots?

Relkond
Автор

Kronos Cloud was cratered with ransomware through this vulnerability. They're toast.

willia