Few vulnerabilities in recent years have attracted as much attention or ignited as much concern across the industry as CVE-2021-44228 – or Log4Shell, as it became known – a critical remote code execution (RCE) vulnerability. The vulnerability, disclosed in December, affected almost every environment with a Java application, was trivially easy to exploit and gave attackers a way to gain complete control of vulnerable systems.
Read full article on Network World