Are there any recommendations from Elastic regarding NVD - CVE-2021-44228 ), a very serious log4j vulnerability announced today? [image] Log4j vulnerability, a bombshell zero-day exploit with global impact | CyberNews Multiple enterprises like Apple, Amazon, Twitter, and thousands more a…

Log4j Critical Vulnerability

BenB196 (Ben B196) December 10, 2021, 6:04pm 2

Also, I think Elastic Security is the wrong section for this topic.

1 Like

Topic		Replies	Views
Is Elasticsearch affected by CVE-2021-45046 - a second vulnerability in log4j? Elasticsearch	2	5953	January 12, 2022
CVE-2021-44228 aka log4shell is logstash and/or elasticsearch affected? Logstash	15	13655	January 12, 2022
Does Log4j vulnerability (CVE-2021-44228) is impacted for ES v7.5.2? Elasticsearch	2	1269	January 17, 2022
Logstash is affected by Apache Log4j2 2.17.0 Vulnerability CVE-2021-44832? Logstash	4	2420	February 3, 2022
Log4j CVE-2021-44832 (released 28th dec) - is ES vulnerable? Elasticsearch	10	6648	February 7, 2022