Log4j Critical Vulnerability

Chris_Stone · December 10, 2021, 6:01pm

Are there any recommendations from Elastic regarding NVD - CVE-2021-44228), a very serious log4j vulnerability announced today?

BenB196 · December 10, 2021, 6:04pm

Also, I think Elastic Security is the wrong section for this topic.

system · January 7, 2022, 6:04pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is Elasticsearch affected by CVE-2021-45046 - a second vulnerability in log4j? Elasticsearch	2	5953	January 12, 2022
CVE-2021-44228 aka log4shell is logstash and/or elasticsearch affected? Logstash	15	13655	January 12, 2022
Does Log4j vulnerability (CVE-2021-44228) is impacted for ES v7.5.2? Elasticsearch	2	1269	January 17, 2022
Logstash is affected by Apache Log4j2 2.17.0 Vulnerability CVE-2021-44832? Logstash	4	2420	February 3, 2022
Log4j CVE-2021-44832 (released 28th dec) - is ES vulnerable? Elasticsearch	10	6648	February 7, 2022