Log4Shell is the name given to a zero-day remote code execution (RCE) vulnerability (CVE-2021-44228), publicly released on 12/09/2021 and assigned the maximum risk score of 10, the highest 'Critical' rating.
The source of the vulnerability was Log4J, an open source Java-based logging utility available from Apache used extensively in software and apps, including those used by just about every enterprise on the planet.
Log4J is not being used in any of CheckMyCCTV™'s software or web pages, so we're not vulnerable to it.
You can read up on Log4J and the Log4Shell vulnerability here:
https://arstechnica.com/information-technology/2021/12/the-log4shell-zeroday-4-days-on-what-is-it-and-how-bad-is-it-really/
Comments
0 comments
Please sign in to leave a comment.