Internet

A second vulnerability in Log4j forces an update

Deepak GuptaDecember 16, 2021
0

A second Log4j bug begins to explode

Cloudflare has warned that cybercriminals are beginning to exploit a second vulnerability in Log4j. They indicate that it is essential that users have the latest version 2.16.0, as otherwise they would be vulnerable. Keep in mind that version 2.15.0 came to correct the initial failure, but it is not enough anymore.

This new vulnerability has been registered as CVE-2021-45046. A hypothetical attacker could carry out denial of service. This new issue comes after the original fix for the Log4Shell vulnerability was incomplete in certain non-default configurations.

But the problem does not seem to stop there. According to Praetorian security researchers, there is a third independent Log4j vulnerability. This bug, which is not fixed by version 2.15.0 either, may allow the leakage of confidential data. At the moment they have not given more technical data to avoid its exploitation.

These failures that we mentioned can put industries of all kinds at risk worldwide. It is a widely used registry library, so many can be affected.

Detect security vulnerabilities

Update, the best solution to be protected

Once again, installing the latest version is the best possible solution to be protected against this new vulnerability in Log4j. This is the second that we see in a matter of days and, as we have explained, it makes the previous patch released, version 2.15.0, not effective to correct this new problem.

So what can we do to be protected? There is no choice but to update again, this time at the version 2.16.0. This will protect us from this second attack that can cause denial of service and compromise proper operation.

However, as we have seen, there may be a third vulnerability let it start to be exploited. A new update will need to be reinstalled shortly to correct this vulnerability once again.

In short, Log4j is once again present in a new vulnerability. It is a bug that is being actively exploited, but for which there is already a patch with update 2.16.0 that all users should install as soon as possible to avoid problems.

We previously published a tutorial where we explained why it is essential to update equipment. We talk about all the essential points of having the latest versions and what can happen if at any given moment our system is outdated and a security breach appears. We have been able to verify this with the vulnerability that we have dealt with in this article and that can be exploited.

We have other articles that may interest you:
  1. How to Upload Videos to LinkedIn and Share With Your Network? [Ulitmate Guide]
  2. 6 Free Online Tools To Identify Songs Easily
  3. Meet Bash Bunny, a USB to attack systems
  4. Why it is important that your VPN has WireGuard
  5. VPN or Tor: which is better to browse with privacy
  6. Steps to set up your home network from scratch
Deepak GuptaDecember 16, 2021
0

Related Articles

Do not do it! This is why your light bulbs at home burn out

February 20, 2023

This is how they have stolen €20,000 from this woman with something you do every day on your mobile

May 9, 2023

This is the WiFi 6E speed of Samsung Galaxy S22 and Galaxy Tab S8

February 18, 2022

Black Friday is just around the corner, precautions so you don’t get scammed

November 16, 2022

Leave a Reply

Your email address will not be published. Required fields are marked *