Log4j for Dummies
log4j is the beginning of something huge that we do not know what severe state will end
A new critical vulnerability was discovered in log4j, an open-source utility widely used to generate logs in Java applications.
What is Log4j, what is it used for, why is it so important?
The Log4j 2 library is used in enterprise Java software and, according to the UK NCSC, is included in Apache frameworks such as Apache Struts2, Apache Solr, Apache Druid, Apache Flink, and Apache Swift. Because Log4j is so widely used, the vulnerability could affect a wide variety of software and services from many major vendors. Your applications also can use Log4J and be affected by this vulnerability. Applications deployed to the Azure Spring Cloud can use Log4j and are vulnerable to this vulnerability as well.
Log4j 2 is a Java-based log library widely used in business systems development, including in various open-source libraries, and directly embedded into leading software applications. Distributed free of charge by the non-profit organization Apache Software Foundation, Log4j has been downloaded millions of times and is one of the most used tools for gathering information on computer networks, websites, and business applications. The software is operated by…
