Everyone, I’ve made some major changes on the Summary page at Log4j CVE-2021-44228, CVE-2021-45046 Summary Page
The official BigFix content for Inventory is moved to the top, followed by the experimental things we’re doing with Logpresso / Log4jscan now.
The earlier detections using shell scripts is deprecated at this point. There are limitations to how good it is at detecting log4j-core, especially if it has been renamed or embedded in other JAR, WAR, or EAR files; as well as limitations on excluding network paths from being scanned.