THREATOPS
THREAT OPSCVEs › CVE-2021-44228

CVE-2021-44228 — Apache Log4j2 Remote Code Execution Vulnerability

CISA KEVExploited: confirmedApache

Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.

Vulnerability details

Related reporting