A large number of applications have been affected by a critical vulnerability in logging software Apache Log4j. These include applications from Apache itself, Amazon, VMware, Microsoft and Sonicwall. The National Cyber Security Center has now posted a list on Github with vulnerable Log4j applications. The NCSC has also published a list of steps to take. Crisis consultations have now also taken place with all important cybersecurity officers.
Serious vulnerability Log4j
On Friday morning, NCSC received reports...