Apache Log4j Vulnerability Alert

Date published: 
16 December 2021
Vulnerability Image

Log4j is an open-source Java logging library developed by the Apache Foundation. It is widely used in many applications and is present in many services as a dependency. This includes enterprise applications, including custom applications developed within an organisation, as well as numerous cloud services.

Follow the NCSC Guidanace to see if products and services you use may be at risk from this vulnerability

Alert: Apache Log4j vulnerability (CVE-2021-44228) - NCSC.GOV.UK

Businesses can be checked if vulnerable by signing up to the free Police CyberAlarm service, and NCSC Early Warning service.