Technical Tip: Using FortiADC to detect and block activities related to exploits of Apache Log4j2 vulnerability
| Description | This article describes the WAF signatures in FortiADC which can be used to detect and block attack attempts to exploit a Remote Code Execution Vulnerability in Apache Log4j2. This signature covers vulnerabilities CVE-2021-44228, CVE-2021-45046 & CVE-2021-45105. |
| Scope | FortiADC v6.0 and later. |
| Solution | Update WAF signature and ensure the WAF signatures are 1.00030 or later.
The signature version can be verified by navigating to System > FortiGuard > FortiGuard Services. 
|
For more information about this attack, see the following FortiGuard Outbreak Alert