Explain "Log 4J vulnerability" like i'm 5
Posted: December 27th, 2021, 7:39 pm
If you own any device connected to the internet in December 2021, then Apache Log 4J vulnerability and all flavors of that similar team won't be any news.
Doing a few personal research, I stumbled upon a few write up which I still find way technical to comprehend even based on my confidence level with technology.
Is anybody going to save Foruminers and explain what the heck Log4Shell, aka CVE-2021-4428 is in layman terms?
Starting up this thread for obvious reasons.
Edit: Decided to break the ice with this write-up, being one of the most comprehensive I've seen so far.
Log4j is a Java library for logging error messages in enterprise applications, which includes custom applications, networks, and many cloud computing services.
In addition, it is used by a large percentage of the Java programs developed in the last decade for both server and client applications.
Doing a few personal research, I stumbled upon a few write up which I still find way technical to comprehend even based on my confidence level with technology.
Is anybody going to save Foruminers and explain what the heck Log4Shell, aka CVE-2021-4428 is in layman terms?
Starting up this thread for obvious reasons.
Edit: Decided to break the ice with this write-up, being one of the most comprehensive I've seen so far.
Log4j is a Java library for logging error messages in enterprise applications, which includes custom applications, networks, and many cloud computing services.
In addition, it is used by a large percentage of the Java programs developed in the last decade for both server and client applications.