Skip to content

Commit

Permalink
Merge pull request #353 from lunasec-io/fix-bug-in-post
Browse files Browse the repository at this point in the history
Fix bug in the new CVSS post
  • Loading branch information
freeqaz authored Dec 17, 2021
2 parents 600fc1b + 9f908c8 commit 5719683
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions docs/blog/2021-12-18-log4j-update-increased-cvss.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -39,11 +39,11 @@ authors:

_The logo gets worse as the situation gets worse..._

**Just trying to fix this? Please read our dedicated
[Mitigation Guide](https://www.lunasec.io/docs/blog/log4j-zero-day-mitigation-guide/).**

Earlier today, the second Log4j vulnerability (CVE-2021-45046) was upgraded from a [CVSS score of 3.7](https://web.archive.org/web/20211215180723/https://logging.apache.org/log4j/2.x/security.html)
(limited DOS) to a [CVSS score of 9.7](https://logging.apache.org/log4j/2.x/security.html) (limited RCE).
(limited DOS) to a [CVSS score of 9.0](https://logging.apache.org/log4j/2.x/security.html) (limited RCE).

**Just trying to patch Log4Shell? Please read our dedicated
[Mitigation Guide](https://www.lunasec.io/docs/blog/log4j-zero-day-mitigation-guide/).**

## Context on CVE Timeline

Expand Down

0 comments on commit 5719683

Please sign in to comment.