Log4shell: New scanner checks whether its own system is affected

The Log4shell vulnerability affects a very widespread Java library. Many people only find out about it after being attacked. A new tool should help.

The Federal Office for Information Technology rated the Log4shell security gap in the logging library Log4j as an extremely critical threat situation in December and thus selected the highest possible warning level. The vulnerability is a security risk for many popular applications. The security company Sec-Research has developed a free scanner that checks whether a …

read more at t3n.de