Cyber Safety Review Board Declares Log4j An “Endemic Vulnerability”
- In its first-ever report, the Cyber Safety Review Board (CSRB) labeled Log4j (CVE-2021-44228) as an “endemic vulnerability” and said that vulnerable instances of Log4j could remain in systems for “a decade or longer.” President Biden established the Cyber Safety Review Board in February 2022 as part of the...