Log in
Register
Cyber Forum
More options
Toggle width
Share this page
Share this page
Share
Share
Cyber Forum
Log in
Register
More options
Toggle width
Share this page
Share this page
Share
Share
Menu
Install the app
Install
Home
CyberWeekly Podcast
Breaking News! Podcast
Cyber Risk Rating
Forums
New posts
Forum list
Trending
Leaderboards
News Feeds
Resources
Latest reviews
Sophos X-Ops Intelix
Threat Reports
Members
Current visitors
My.CompTIA
Help Documents
Preference Center
Forums
Security
Active Exploits Discussion/Recommendations
Log4j Vulnerability Information
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="MJ Shoer" data-source="post: 2524" data-attributes="member: 3"><p><h3>CISA Issues ED 22-02 Directing Federal Agencies to Mitigate Apache Log4j Vulnerabilities</h3><p>Original release date: December 17, 2021</p><p></p><p>CISA has issued <a href="https://www.cisa.gov/emergency-directive-22-02" target="_blank">Emergency Directive (ED) 22-02: Mitigate Apache Log4j Vulnerability</a>], directing federal civilian executive branch (FCEB) agencies to address Log4j vulnerabilities—most notably, <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-44228" target="_blank">CVE-2021-44228</a>.</p><p></p><p>Although ED 22-02 applies to FCEB agencies, CISA strongly recommends that all organizations review <a href="https://www.cisa.gov/emergency-directive-22-02" target="_blank">ED 22-02</a> for mitigation guidance. For additional details, see CISA’s webpage <a href="https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance" target="_blank">Apache Log4j Vulnerability Guidance</a>.</p><p></p><p>This product is provided subject to this <a href="https://us-cert.cisa.gov/privacy/notification" target="_blank">Notification</a> and this <a href="https://www.dhs.gov/privacy-policy" target="_blank">Privacy & Use</a> policy.</p><p></p><p><a href="https://us-cert.cisa.gov/ncas/current-activity/2021/12/17/cisa-issues-ed-22-02-directing-federal-agencies-mitigate-apache" target="_blank">Continue reading...</a></p></blockquote><p></p>
[QUOTE="MJ Shoer, post: 2524, member: 3"] [HEADING=2]CISA Issues ED 22-02 Directing Federal Agencies to Mitigate Apache Log4j Vulnerabilities[/HEADING] Original release date: December 17, 2021 CISA has issued [URL='https://www.cisa.gov/emergency-directive-22-02']Emergency Directive (ED) 22-02: Mitigate Apache Log4j Vulnerability[/URL]], directing federal civilian executive branch (FCEB) agencies to address Log4j vulnerabilities—most notably, [URL='https://nvd.nist.gov/vuln/detail/CVE-2021-44228']CVE-2021-44228[/URL]. Although ED 22-02 applies to FCEB agencies, CISA strongly recommends that all organizations review [URL='https://www.cisa.gov/emergency-directive-22-02']ED 22-02[/URL] for mitigation guidance. For additional details, see CISA’s webpage [URL='https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance']Apache Log4j Vulnerability Guidance[/URL]. This product is provided subject to this [URL='https://us-cert.cisa.gov/privacy/notification']Notification[/URL] and this [URL='https://www.dhs.gov/privacy-policy']Privacy & Use[/URL] policy. [URL='https://us-cert.cisa.gov/ncas/current-activity/2021/12/17/cisa-issues-ed-22-02-directing-federal-agencies-mitigate-apache']Continue reading...[/URL] [/QUOTE]
Name
Verification
Post reply
Forums
Security
Active Exploits Discussion/Recommendations
Log4j Vulnerability Information
Top
Bottom
Home
Forums
Threat Reports
My.CompTIA
Menu