Security News > 2022 > March > Qualys platform study: Log4Shell, the menace continues

Qualys platform study: Log4Shell, the menace continues
2022-03-21 08:00

Three months into Log4Shell, the Qualys Cloud Platform suggests that 30% of the Log4j instances still remain unpatched.

Qualys research team reveals the current state of Log4Shell.

Log4Shell exposure Qualys Cloud Platform scanned more than 150 million IT assets, across all geographies, flagging 22 million vulnerable app installations.

Log4Shell threat landscape Nearly 68,000 vulnerabilities were found in cloud workloads and containers across the U.S. and EMEA, reinforcing the recommendation that enterprises need to monitor running containers for flaws like Log4Shell.

Further, The Qualys Research team found that more than 50% of application installations with Log4j were flagged as "End of support." These publishers will likely not be providing Log4Shell security patches for these apps.

Thankfully, critical vulnerabilities as severe as Log4Shell are a rare occurrence.


News URL

https://www.helpnetsecurity.com/2022/03/21/qualys-platform-study-log4shell/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Qualys 5 0 7 3 0 10