|
gptkbp:instance_of
|
gptkb:vulnerability
|
|
gptkbp:action
|
network segmentation
incident response plans
application firewall rules
monitoring for exploitation
|
|
gptkbp:affects
|
Java applications
increased funding for cybersecurity
regulatory changes proposed
enhanced security practices
increased scrutiny on software supply chain
|
|
gptkbp:allows
|
remote code execution
|
|
gptkbp:category
|
remote code execution vulnerability
|
|
gptkbp:community_feedback
|
active
|
|
gptkbp:community_impact
|
high
|
|
gptkbp:cve_identifier
|
gptkb:CVE-2021-44228
|
|
gptkbp:difficulty_levels
|
critical
|
|
gptkbp:discovered_by
|
gptkb:Apache_Log4j
|
|
gptkbp:discovery_year
|
gptkb:2021
|
|
gptkbp:economic_impact
|
gptkb:significant
|
|
gptkbp:enforces
|
best practices
awareness programs
recommended
incident response training
|
|
gptkbp:exploited_via
|
JNDI lookup
|
|
gptkbp:government_response
|
advisories issued
emergency measures taken
guidelines published
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
Log4 Shell exploit
|
|
gptkbp:impact
|
gptkb:security
service disruption
system compromise
|
|
gptkbp:is_vulnerable_to
|
high
attackers
input validation error
|
|
gptkbp:latest_version
|
gptkb:Log4j_2.x
|
|
gptkbp:media_coverage
|
extensive
|
|
gptkbp:prevention
|
upgrading Log4j
|
|
gptkbp:provides_support_for
|
gptkb:enterprise_solutions
gptkb:cloud_services
web applications
|
|
gptkbp:public_awareness
|
high
|
|
gptkbp:regulatory_compliance
|
CISA advisory
|
|
gptkbp:related_to
|
gptkb:Log4j_library
|
|
gptkbp:released
|
gptkb:Log4j_2.15.0
gptkb:Log4j_2.16.0
gptkb:Log4j_2.17.0
|
|
gptkbp:reported_by
|
gptkb:Chen_Zhaojun
|
|
gptkbp:reports_to
|
gptkb:Public
December 9, 2021
|
|
gptkbp:research_focus
|
vulnerability analysis
exploit development
remediation strategies
|
|
gptkbp:responds_to
|
security patches released
|
|
gptkbp:response_time
|
urgent
|
|
gptkbp:bfsParent
|
gptkb:Log4j
|
|
gptkbp:bfsLayer
|
5
|