Subject: Apache Log4j2 Vulnerability - CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-44832 - ESA-2021-31 Note - We will update this announcement with new details as they emerge from our analysis. Please check back periodically. Update Log Dec 16, 2021 - 04:20 UTC - Update Summary: E…

Apache Log4j2 Remote Code Execution (RCE) Vulnerability - CVE-2021-44228 - ESA-2021-31

warkolm (Mark Walkom) December 22, 2021, 1:23am 3

Please feel free to use https://ela.st/log4j as a short link to this topic, it's a little easier to share.

3 Likes

Replace Log4j from 2.11.0 to 2.15.0

Topic		Replies	Views
CVE-2021-45105 and CVE-2020-9488 vulnerabilities with java apm agent 1.28.4 APM java	4	1626	February 9, 2022
When will the next patch be released for Elasticsearch Elasticsearch	8	1628	January 17, 2022
Elastic Diagnostics and Log4j2 vulnerability Elasticsearch	2	1028	February 6, 2022
How do I Mitigate LOG4J CVE on Elasticsearch 7.4.0? Elasticsearch	3	613	January 4, 2023
Is Elasticsearch affected by CVE-2021-45046 - a second vulnerability in log4j? Elasticsearch	2	5953	January 12, 2022