Log4j Vulnerability

On December 9, 2021, a zero-day vulnerability in Log4j 2.x was announced via Twitter. Log4j is an open source logging utility commonly used in applications. In fact, our customer data shows that 88% of organizations with over 100 apps use Log4j. This is of great concern because, if successfully exploited, attackers are able to perform a Remote Code Execution attack and compromise the affected server. If you are wondering if your applications were affected, or if you’re looking for remediation guidance, please check out our resources below.

Interested in learning more about Veracode SCA?

Contact Us