Palo Alto Networks security advisory

Number: AV21-652
Date: 22 December 2021

On 10 December 2021 Palo Alto Networks published a Security Advisory to address critical vulnerabilities which may affect multiple products using the Apache Log4j logging utility.

Exploitation of these vulnerabilities could lead to remote code execution.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates when available.

Palo Alto Networks Security Advisory (Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105)
https://security.paloaltonetworks.com/CVE-2021-44228

Active Exploitation of Apache Log4j Vulnerability (AL21-019)
https://cyber.gc.ca/en/alerts/active-exploitation-apache-log4j-vulnerability

Date modified: