Cisco security advisory

Number: AV21-635
Date: 15 December 2021

On 10 December 2021 Cisco published a Security Advisory to investigate and address a critical vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. , tracked as CVE-2021-44228, which may affect multiple products using the Apache Log4j logging utility.

Exploitation of this vulnerability could lead to remote code execution.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates when available.

Cisco Security Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

Apache Security Advisory (AV21-626)
https://cyber.gc.ca/en/alerts/apache-security-advisory-4

Active Exploitation of Apache Log4j Vulnerability (AL21-019)
https://cyber.gc.ca/en/alerts/active-exploitation-apache-log4j-vulnerability

Date modified:: 2021-12-15

Language selection

Search