Log4Shell (Apache Log4j CVE-2021-44228)
A trivially exploitable remote code execution flaw in Apache Log4j 2, the ubiquitous Java logging library, scored a maximum CVSS 10.0 and exposed hundreds of millions of devices and applications worldwide to instant takeover via a single crafted log string.
- Victim
- Global (Apache Log4j users worldwide)