What's new
By:
Filters
ExtraLicense - Buy, Sell, & Trade Your Licenses

This is a sample guest message. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

Official RSS - PSA: Potential security vulnerability in Elasticsearch and more via Apache Log4j (Log4Shell)

EL PaperBoy

EL PaperBoy

Well-known member
It has come to our attention today that a vulnerability has been discovered in popular Java logging library Log4j 2 which may allow attackers to arbitrarily execute code (remote code execution).

Apache Log4j 2 is bundled with and used in many Java applications including Elasticsearch.

XenForo itself is not directly exploitable, and we are currently investigating whether XenForo Enhanced Search can be used as a vector at all, but this is potentially significant enough that an abundance of...

Read more
View the full article

 
You must log in or register to reply here.

Similar threads

EL PaperBoy
Official RSS - The numbers don’t lie: Invision Community in 2021
Replies
0
Views
184
EL PaperBoy
EL PaperBoy
EL PaperBoy
Official RSS - The numbers don’t lie: Invision Community in 2021
Replies
0
Views
183
EL PaperBoy
EL PaperBoy
EL PaperBoy
Official RSS - vBulletin 5.6.6 Release Candidate is available for download.
Replies
0
Views
464
EL PaperBoy
EL PaperBoy
EL PaperBoy
Official RSS - vBulletin 5.6.6 Alpha is available for download.
Replies
0
Views
437
EL PaperBoy
EL PaperBoy
EL PaperBoy
Official RSS - Improve your client relationships by offering a public support community
Replies
0
Views
165
EL PaperBoy
EL PaperBoy
Top