×
Community Blog Apache Log4j2: Alibaba Cloud Service Response and the 3-Step Emergency Protection Plan

Apache Log4j2: Alibaba Cloud Service Response and the 3-Step Emergency Protection Plan

This article discusses Alibaba Cloud service response and the 3-step emergency protection plan.

Vulnerability Description

Alibaba Cloud is aware of the recently disclosed security issue related to the open-source Apache “Log4j2" utility (CVE-2021-44228). The exploit enables remote code execution of this vulnerability, facilitating a complete server takeover. We strongly recommend customers that manage environments containing the Log4j2 update to the latest version of Apache Log4j 2.15.0 as soon as possible to prevent vulnerability attacks.

Vulnerability Rating and Impact Version

The version of Apache Log4j affected this time is 2.x <2.15.0. The impact of each security flaw is critical. The Alibaba Cloud Security Team has verified the vulnerability impacts the default configurations of many Apache frameworks, including Apache Struts2, Apache Solr, Apache Druid, Apache Flink, SpringBoot, etc.

3-Step Emergency Protection Plan

1. Use Web Application Firewall (WAF) to Protect against JNDI Injection Attacks

WAF has been equipped with JNDI injection protection on the original system. The protection rules for JNDI injection of Apache Log4j 2.x have been updated.

2. Use Cloud Firewall for a Two-Way Interception

Cloud Firewall prevents this vulnerability by 8turning on the blocking mode with one click and intercepting log4j2 attacks automatically. Applying virtual patching* avoids business interruptions from application repair and restart.

3. Use Security Center for One-Click Vulnerability Detection

The Alibaba Cloud Security Center Application Vulnerability Module supports the one-click detection and repair of log4j2 on the host, repairing multiple hosts affected by the vulnerability at the same time and saving time for users to repair the vulnerability.

30-Day Safety Product Trial and Consultation

Fill in the 30-day security product trial and consultation form or contact us directly to apply for free DDoS protection, WAF, Cloud Security Center, managed security service, and security consultation service.

0 1 0
Share on

Alibaba Cloud Community

1,042 posts | 256 followers

You may also like

Comments