| VID |
14262 |
| Severity |
10 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
Apache Log4j is a Java-based logging utility. It is part of the Apache Logging Services, a project of the Apache Software Foundation. Log4j is one of several Java logging frameworks.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these conditions will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
https://logging.apache.org/log4j/
* Platforms Affected:
Any operating system Any version |
| Recommendation |
Refer to the following website and always maintain the latest version :
https://logging.apache.org/log4j/ |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
