Dec 10, 2021 · This CVE is currently being enriched by team members, this process results in the association of reference link tags, CVSS, CWE, and CPE applicability statement data.

Apache issued a patch for CVE-2021-44228, version 2.15, on December 6. However, this patch left part of the vulnerability unfixed, resulting in CVE-2021-45046 and a second patch, version 2.16, released …

Mar 19, 2025 · Log4Shell is a critical Remote Code Execution (RCE) vulnerability in the Apache Log4j logging framework. It went unnoticed for nearly eight years, since 2013, before its public disclosure in …

Nov 25, 2025 · Referred to as "Log4Shell" (CVE-2021-44228, CVE-2021-45046) it introduces a new attack vector that attackers can exploit to extract data and deploy ransomware in an organization.

Log4Shell is a critical vulnerability in some versions of the Apache Log4j 2 Java library that allows hackers to run arbitrary code on affected systems.

Nov 26, 2025 · What is CVE-2021-44228? The original Apache Log4j vulnerability (CVE-2021-44228), also known as Log4Shell, is a cybersecurity vulnerability on the Apache Log4j 2 Java library. This …

Log4Shell is a critical zero-day vulnerability (CVE-2021-44228) in Log4j that was uncovered in December 2021. It allows attackers to execute arbitrary code remotely on affected systems.

This repo contains operational information regarding the Log4shell vulnerability in the Log4j logging library. Especially CVE-2021-44228 / CVE-2021-45046 and also covers CVE-2021-4104 / CVE-2021 …

Jul 17, 2025 · CVE-2021-44228, dubbed Log4Shell, is a remote code execution (RCE) vulnerability in Apache Log4j 2.x (specifically, log4j-core versions 2.0-beta9 through 2.14.1). The flaw resides in …

An exploit for a critical zero-day vulnerability affecting Apache Log4j2, known as Log4Shell, was disclosed on December 9, 2021. All versions of Log4j2 >= 2.0-beta9 and <= 2.15.0 are affected by …