Is CVE-2021-44228 actively exploited?

Yes, ReconShield sensors observe active exploitation of CVE-2021-44228 in the wild.

Legal Disclaimer:

This platform is for authorized security research and educational purposes ONLY. Scanning assets without explicit permission is illegal.

CRITICAL Severity

CISA KEV Listed

CVE-2021-44228

Log4Shell: Apache Log4j RCE

CVSS v3.1

10.0

EPSS Score

97.4%

// AI abuse Summary

ReconShield Intelligence identifies CVE-2021-44228 as a CRITICAL severity vulnerability actively exploited in the wild. Threat actors frequently utilize this vulnerability to achieve remote code execution (RCE).

// Technical Description

Apache Log4j2 JNDI features used in configuration, log messages, and parameters do not protect against unauthorized actor controlled LDAP and other JNDI related endpoints.

// Vulnerability Metadata

CVE Identifier: CVE-2021-44228
Published Date: 2021-12-10
Active Exploitation: Observed in the Wild
Ransomware Usage: Known Associations
Patch Available: Yes