Many critical vulnerabilities get discovered every year that are of high urgency to address, but Log4Shell was unusual because it was so easy to exploit wherever it was present, with few caveats or subtleties for attackers to navigate. Developers use logging utilities to record operations in a given application.

Read full article on Wired – Threat Level