*Source: Time, see link below for full article
Security pros say it’s one of the worst computer vulnerabilities they’ve ever seen.
They say state-backed Chinese and Iranian hackers and rogue cryptocurrency miners have already seized on it.
The Department of Homeland Security is sounding a dire alarm, ordering federal agencies to urgently eliminate the bug because it’s so easily exploitable — and telling those with public-facing networks to put up firewalls if they can’t be sure. The affected software is small and often undocumented.
Detected in an extensively used utility called Log4j, the flaw lets internet-based attackers easily seize control of everything from industrial control systems to web servers and consumer electronics. Simply identifying which systems use the utility is a challenge; it is often hidden under layers of other software.
Read the full article from Time here:https://time.com/6128795/log4j-security-flaw/
-------
3manager however is not affected by this vulnerability as we do not use Log4J and the software is based on Microsoft .Net.