Log4Shell is the name assigned to a vulnerability in the Java library Log4J. This has been published as CVE-2021-44228. It affects any Java program that uses a logging library log4j versions 2.0-beta9 to 2.14.1 inclusive. This is a big deal because it is extremely easy to exploit the vulnerability. Calpendo does use log4j, but it… Continue reading Log4Shell Vulnerability