You can leverage the current release of ArcSight ESM, Logger, and Recon to detect and monitor the Apache Log4j RCE vulnerabilities. This vulnerability can allow an attacker to execute arbitrary code by sending crafted log messages.
In the release 188.8.131.52, the Apache_Log4j_Vulnerabilities184.108.40.206 patch has updated searches in Logger/Recon and rules in ESM to support the following CVEs
ESM 7.2 and above
Logger 7.0 and above
Recon 1.2 and above
Suggested for you are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.
The Apache_Log4j_Vulnerabilities220.127.116.11 patch has updated searches in Logger/Recon and rules in ESM to support the following CVEs
Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox