Number: AV21-647
Date: 21 December 2021
Between 14 and 20 December 2021 Dell published Security Advisories to address critical vulnerabilities which may affect multiple products using the Apache Log4j logging utility.
Exploitation of this vulnerability could lead to remote code execution.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates when available.
Dell Response to Apache Log4j Remote Code Execution Vulnerability (DSN–2021–007)
https://www.dell.com/support/kbdoc/en–ca/000194372/dsn–2021–007–dell–response–to–apache–log4j–remote–code–execution–vulnerability
Security Advisories and Notices
https://www.dell.com/support/security/en–ca
Active Exploitation of Apache Log4j Vulnerability (AL21-019)
https://cyber.gc.ca/en/alerts/active-exploitation-apache-log4j-vulnerability