https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136495#M20632 <P>Thanks a lot for your feedback.</P> Thu, 16 Dec 2021 06:26:15 GMT Mada 2021-12-16T06:26:15Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136446#M20609 <P><SPAN>Hello CheckMates,</SPAN></P><P>Can somebody check and let me know what kind of filter can be used via Smart-Console (R80.20), only to see the relevant logs details for "CVE-2021-44228&nbsp;Log4j", just to see if there were any attack attempts&nbsp;or not?</P><P>Does also the Firewall blade also see these kind of logs or only the IPS blade?</P><P>I've already filtered as below, but not able to see any logs:</P><P>blade:IPS&nbsp;<SPAN>CVE-2021-44228&nbsp;</SPAN></P><P><SPAN>Is there another way to filter only for "industry_reference"?</SPAN></P><P><SPAN>A reply would be greatly appreciated.</SPAN></P><P><SPAN>Thank you in advance!</SPAN></P> Wed, 15 Dec 2021 16:34:13 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136446#M20609 Mada 2021-12-15T16:34:13Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136462#M20620 <P>This is an IPS signature, thus Firewall blade alone will not see it.</P> Wed, 15 Dec 2021 18:35:59 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136462#M20620 PhoneBoy 2021-12-15T18:35:59Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136480#M20626 <P>Just do log filter search like this in dashboard -&gt; blade:IPS AND CVE-2021-44228</P> <P>You will see lots of stuff, for sure.</P> Wed, 15 Dec 2021 23:56:18 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136480#M20626 the_rock 2021-12-15T23:56:18Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136495#M20632 <P>Thanks a lot for your feedback.</P> Thu, 16 Dec 2021 06:26:15 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136495#M20632 Mada 2021-12-16T06:26:15Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136496#M20633 <P>Thanks for your feedback.</P> Thu, 16 Dec 2021 06:26:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-44228-Log4j-vulnerability-Log4Shell/m-p/136496#M20633 Mada 2021-12-16T06:26:42Z