2021/12/11
Apache Log4jの任意のコード実行の脆弱性(CVE-2021-44228)に関する注意喚起
https://www.jpcert.or.jp/at/2021/at210050.html
Inside the log4j2 vulnerability (CVE-2021-44228)
http://blog.cloudflare.com/inside-the-log4j2-vulnerability-cve-2021-44228/
Log4jの脆弱性対策としてAWS WAFのマネージドルールに「Log4JRCE」が追加されました | DevelopersIO
https://dev.classmethod.jp/articles/aws-waf-new-rule-log4jrce/
Logout4Shell, a vaccine for Log4Shell Apache Log4j RCESecurity Affairs
https://securityaffairs.co/wordpress/125512/hacking/logout4shell-vaccine-log4j-flaw.html
Guidance for preventing, detecting, and hunting for CVE-2021-44228 Log4j 2 exploitation - Microsoft Security Blog
https://www.microsoft.com/security/blog/2021/12/11/guidance-for-preventing-detecting-and-hunting-for-cve-2021-44228-log4j-2-exploitation/