Skip to content

Incidents by attack type:

Zero-day

Zero-dayResolved

Log4Shell (Apache Log4j CVE-2021-44228)

A trivially exploitable remote code execution flaw in Apache Log4j 2, the ubiquitous Java logging library, scored a maximum CVSS 10.0 and exposed hundreds of millions of devices and applications worldwide to instant takeover via a single crafted log string.

Victim
Global (Apache Log4j users worldwide)