Skip to main content Learn how LunaSec helps protect you from 0-days, and Star us on GitHub . Docs Blog Contact Us GitHub 🌜 🌞 Search Recent posts How to Automatically Mitigate Log4Shell via a Live Patch (CVE-2021-44228 + CVE-2021-45046) Log4Shell Update: Second log4j Vulnerability Published (CVE-2021-44228 + CVE-2021-45046) Guide: How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228 & CVE-2021-45046) Log4Shell: RCE 0-day exploit found in log4j 2, a popular Java logging package Why your Content Security Policy isn't as secure as you think December 14, 2021 · 7 min read Free Wortley CEO at LunaSec Chris Thompson Developer at Lunasec Forrest Allison Developer at LunaSec Just trying to fix this? Please read our dedicated Mitigation Guide . After the log4j maintainers released version 2.15.0 to address the Log4Shell vulnerability , an additional attack vector was ident...