FortiADC
FortiADC enhances the scalability, performance, and security of your applications whether they are hosted on premises or in the cloud.
ck_FTNT
Staff
Staff

 

Description

This article describes the WAF signatures in FortiADC which can be used to detect and block attack attempts to exploit a Remote Code Execution Vulnerability in Apache Log4j2. This signature covers vulnerabilities CVE-2021-44228, CVE-2021-45046 & CVE-2021-45105.
Scope FortiADC v6.0 and later.
Solution

Update WAF signature and ensure the WAF signatures are 1.00030 or later.

 

The signature version can be verified by navigating to System > FortiGuard > FortiGuard Services.

ck_FTNT_0-1640199374275.png

 

 

For more information about this attack, see the following FortiGuard Outbreak Alert

FortiGuard Outbreak Alert - Log4j2 Vulnerability