Skip to main content

CIGNEX is actively responding to the Log4j CVE-2021-44228 vulnerability - The vulnerability in Log4j software might offer hackers unrestricted access to computer systems & applications

{Tuesday, December 14, 2021; Michigan, USA} - CIGNEX, a leading provider of Digital Transformation through Open Source, Cloud and Automation technology solutions is actively responding to the Log4Shell vulnerability in the Apache Log4j Java library, which has been reported as remote code execution vulnerability.

Digital systems all across the Internet have been impacted by the vulnerability in Log4j, a commonly used logging framework. The logging library vulnerability is easy to exploit, as it allows attackers to take entire control of compromised servers. The vulnerability in Log4j appears to have impacted the whole Java ecosystem.

The flaw effectively allows hackers to take over a computer system. Because the defective computer code is embedded in many types of software, updating it is a time-consuming process. The US Cybersecurity and Infrastructure Security Agency (CISA) has been impacted by the problem. The CISA notice states, "CISA advises users and administrators to examine the Apache Log4j 2.15.0 announcement and update to Log4j 2.15.0 or apply the recommended mitigations immediately." More information is available from the Apache Announcement.

"We are working with organizations to help them understand, detect, investigate and mitigate risks to their applications." said Harish Ramachandran, CEO, CIGNEX, "CIGNEX has been helping clients to resolve and neutralize the threats and will continue to help clients in this crisis," he added.

CIGNEX is working with the Information Security team of a major telecom software company & helping them mitigate the risks from this vulnerability. They can be reached out for assistance by any organization which suspects a compromise in their security or wants to update the Log4j version. For vulnerability assessment or remediation services, CIGNEX can be reached at info@cignex.com 

About CIGNEX (www.cignex.com)

CIGNEX is a Michigan based global consulting company offering solutions & services on Open Source, Cloud & Automation. Since 2000, CIGNEX has been delivering enterprise class solutions that enable organizations achieve unparalleled results.

For additional information, contact: 

Priyanka Sharma
Global Head of Marketing
CIGNEX
priyankap.sharma@cignex.com