CVE-2021-44228 – Log4j RCE 0-Day Mitigation

A zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021 that results in remote code execution (RCE).


This vulnerability is actively being exploited.

Timeline

12/09/2021
CVE-2021-44228 – CVE disclosure

12/10/2021
POC released

12/10/2021
FTS Security teams tested all internal Applications and systems, started the process to remediate the vulnerable packages

12/12/2021
Remediation completed

Back to Trust Center