Mémoire
| Résumé : | In our modern digital age, IT security has become a top priority due to the increasing frequency and severity of cyber attacks and data breaches. This thesis takes an in-depth look at the Log4Shell vulnerability (CVE-2021-44228), a critical flaw in the Apache Log4j 2 logging library, discovered in December 2021. This vulnerability is considered one of the most significant in recent years due to its CVSS score of 10 (critical), its potential for remote code execution (RCE) without user interaction, and its widespread impact on a wide range of computer systems.The research presented in this thesis is structured around four main objectives: (1) performing a detailed technical analysis of the Log4Shell vulnerability, (2) assessing its impact in various sectors, (3) examining and comparing existing detection tools and methodologies, and (4) suggesting mitigation strategies to strengthen security practices. Through a comprehensive exploration of these aspects, this work aims to provide an in-depth understanding of the mechanisms and consequences of Log4Shell, as well as practical recommendations for protecting against such vulnerabilities in the future.The results of this thesis highlight the crucial need for proactive vulnerability management, particularly in systems based on obsolete components, which often remain vulnerable due to their complexity and the challenges associated with updating them. By analysing the technical intricacies of Log4Shell, assessing its actual impact and examining detection and mitigation approaches, this research contributes to both the academic and practical fields of IT security, offering valuable insights into improving the resilience of information systems to future threats. |
