![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 33%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,658 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 0%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVM%3C/text%3E%3C/svg%3E)
@fxconsulting Thanks for reaching out. Can you explain a bit what kind of issues are you talking about.
Log4j 2 Remote Code Execution vulnerability affecting various industry-wide Apache products.
Microsoft is aware of active exploitation of a critical Log4j 2 Remote Code Execution vulnerability affecting various industry-wide Apache products. This vulnerability is in the open source Java component Log4J 2 as documented in Apache CVE-2021-44228.
We are taking steps to keep customers safe and protected - including performing a cross-company assessment to identify and remediate any impacted Microsoft services.
Microsoft is not aware of any impact to the security of our enterprise services and has not experienced any degradation in the reliability or availability of those services as a result of this vulnerability. However, we are still actively investigating utilization of Log4j 2 in our services, and this determination may be subject to change at any given time based upon investigative findings. We will update this statement as the event warrants.
We are also investigating for potential customer/partner impact. The Security update guide lists out services that require specific actions to customers to mitigate the risks posed by this vulnerability. If we identify additional services which require customers to take action, we will notify them through normal notification channels and continue to add these services to the Security update guide. Please subscribe to the security update guide to be notified when new services are added to this page. If a Microsoft service is not listed on this page, there is no action required by the customer at this time.
We recommend that customers review Apache CVE-2021-44228 and the Apache security advisory (Apache Log4j 2 Security Vulnerabilities) for details about the vulnerability and references to additional resources that can be used to remediate the issue in customer environments.
Guidance from Microsoft
Please review the following guidance from Microsoft pertaining to this issue:
MSRC Blog: Microsoft’s Response to CVE-2021-44228 Apache Log4j 2
Microsoft Security blog: Guidance for preventing detecting and hunting for CVE-2021-44228 log4j2 exploitation
Security Update Guide: CVE-2021-44228 | Microsoft - Apache Log4j Remote Code Execution Vulnerability
Regarding the Minecraft Java Edition:
Minecraft customers who apply the fix are protected.
Please see Minecraft Wiki for further details:
Minecraft Wiki: Java Edition 1.18.1 – Minecraft Wiki (fandom.com)
Regarding M365 services:
Q: Are M365 Services affected by Log4J 2 CVE-2021-44228?
A: We have evaluated the Microsoft 365 service infrastructure and can confirm that we have not identified any impact to Microsoft 365 services or features at this time. We will continue to monitor for updates related to the Apache Log4j vulnerability and will take action as necessary. If there is a change to this impact assessment you will be notified directly via Message center.
Regarding the Dynamics 365 services:
Q: What can you tell me about the Dynamics 365 service infrastructure?
A: We are investigating the Dynamics 365 service infrastructure to determine any impact related to the Log4j 2 vulnerability. If we identify any impact, you will notified directly via Message Center.
We encourage our customers to practice industry-standard best practices for security and data protection including embracing the Zero Trust Security model and adopting robust strategies to manage product security updates, endpoint security updates, and passwords. More information on Zero Trust Security is available at https://aka.ms/zerotrust. Additional information is available at https://www.microsoft.com/en-us/security.
-----------------------------------------------------------------------------------------------------------------
Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.