Latest

Critical remote code execution vulnerability found in Apache Log4j2 library

The National Tribune
The National Tribune
  • National
  • Date Time
Australian Cyber Security Centre

Background /What has happened?

A remote code execution vulnerability has been identified in Apache Log4j2 library, one of the most widely used Java-based logging utilities globally, via a security blog post.

Proof-of-concept code to exploit this vulnerability is publicly available on GitHub.

Due to widespread use in popular frameworks a large number of third-party apps may also be vulnerable to exploits.

The ACSC is aware of scanning in attempts to locate vulnerable servers.

Mitigation / How do I stay secure?

Australian organisations who utilise Apache Log4j2 versions prior to 2.15.0 should review their patch level and update to the latest available version.

Assistance / Where can I go for help?

/Public Release. View in full here.
Tags:, , , , ,

You might also like

A Nasa rover has reached a promising place to search for fossilised life on Mars

Does ejaculating often reduce your risk of prostate cancer?

TikTok and Instagram are full of misleading information about birth control – and wellness influencers are helping drive these narratives

‘Sunny Day Flooding’ Increases Fecal Contamination of Coastal Waters

Algeria: ICRC president meets with Algerian authorities

High number of pre-trial detainees, access to healthcare matters of concern, UN torture prevention body says: Albania

Influencing Adventitious Rooting of Lindera benzoin Stem

Promise Undelivered As Road Deaths Jump Again

© 2024 - The National Tribune Australia