There are generally three Log4j, aka log4shell designated CVE-2021-44228 by MITRE, vulnerability mitigation plans that can be considered implementing as soon as possible to protect systems and applications from this Log4j vulnerability:
- Shield all of your applications
- Patch Log4j libraries
- Turn off the vulnerable capabilities
Mitigating log4j vulnerability plan #1: Shield all of your applications
Mitigating log4j vulnerability plan #2: Patch Log4j libraries
Mitigating log4j vulnerability plan #3:Turn off the vulnerable capabilities
Mitigating log4j vulnerability plan #4: Identifying Log4j vulnerable Application systems
How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228 & CVE-2021-45046)
- Get Log4Shell or log4j information
- Analyze and assess in case your application have been impacted by Log4Shell
- Mitigate log4j