Log4j - definitely not getting jiggy with it

The newly discovered vulnerability of the Log4j logging library is impacting systems across the globe. There are known exploits out there which is concerning as companies are only just now getting patches out there or workarounds.

Cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd#vp

Cisco Talos: https://blog.talosintelligence.com/2021/12/apache-log4j-rce-vulnerability.html

VMware: https://www.vmware.com/security/advisories/VMSA-2021-0028.html

Palo Alto: https://security.paloaltonetworks.com/CVE-2021-44228

Palo Alto Unit 42 Response:

https://unit42.paloaltonetworks.com/apache-log4j-vulnerability-cve-2021-44228/

F5 Networks: https://support.f5.com/csp/article/K19026212

Splunk: https://www.splunk.com/en_us/blog/bulletins/splunk-security-advisory-for-apache-log4j-cve-2021-44228.html

Fortinet: https://www.fortiguard.com/psirt/FG-IR-21-245?utm_source=blog&utm_campaign=blog

Juniper: https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=RSS