{"id":158291,"date":"2021-12-23T14:58:47","date_gmt":"2021-12-23T14:58:47","guid":{"rendered":"https:\/\/onedesk.com\/onedesk-e-il-log4j-vulnerabilita\/"},"modified":"2021-12-23T14:58:53","modified_gmt":"2021-12-23T14:58:53","slug":"onedesk-e-il-log4j-vulnerabilita","status":"publish","type":"post","link":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/","title":{"rendered":"OneDesk e la vulnerabilit\u00e0 di Log4j"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Una vulnerabilit\u00e0 zero-day che colpisce la versione 2.0&lt; = 2.14.1 del pacchetto Apache Log4j 2 \u00e8 stato divulgato al pubblico il 9 dicembre. (Si prega di fare riferimento al <a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2021-44228\">CVE<\/a> per maggiori dettagli.)<\/p>\n\n<p class=\"wp-block-paragraph\">Apache ha rilasciato una nuova <a href=\"https:\/\/logging.apache.org\/log4j\/2.x\/security.html\">versione di Log4j<\/a> per correggere la vulnerabilit\u00e0. Le versioni di questa libreria precedenti alla 2.15.0 sono vulnerabili a un attacco di esecuzione di codice remoto. Per maggiori dettagli sulla vulnerabilit\u00e0, fare riferimento al CVE.<\/p>\n\n<p class=\"wp-block-paragraph\">Abbiamo studiato la nostra piattaforma Cloud SaaS e confermato l&#8217;utilizzo delle librerie log4j interessate sia nel nostro codice che nei servizi dipendenti. Possiamo affermare che la vulnerabilit\u00e0 non era sfruttabile in base a diverse mitigazioni gi\u00e0 presenti nell&#8217;ambiente.<\/p>\n\n<p class=\"wp-block-paragraph\">In meno di 6 ore dopo essere venuti a conoscenza di questa vulnerabilit\u00e0, abbiamo incorporato la libreria corretta nel nostro codice (programmato per essere rilasciato) e abbiamo applicato in tempo reale le mitigazioni da <a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2021-44228\">Mitre.org<\/a><\/p>\n\n<p class=\"wp-block-paragraph\">Abbiamo anche modificato le regole di rilevamento per il nostro WAF e monitoriamo costantemente i modelli di abuso.<\/p>\n\n<p class=\"wp-block-paragraph\">Sabato mattina abbiamo rilasciato le correzioni per la nostra versione on-premise di OneDesk e abbiamo iniziato a contattare i nostri clienti on-premise fornendo passaggi su misura per mitigare nei propri ambienti.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Una vulnerabilit\u00e0 zero-day che colpisce la versione 2.0&lt; = 2.14.1 del pacchetto Apache Log4j 2 \u00e8 stato divulgato al pubblico il 9 dicembre. (Si prega di fare riferimento al CVE per maggiori dettagli.) Apache ha rilasciato una nuova versione di Log4j per correggere la vulnerabilit\u00e0. Le versioni di questa libreria precedenti alla 2.15.0 sono vulnerabili [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"tpgb_global_settings":"","inline_featured_image":false,"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":"","jetpack_post_was_ever_published":false},"categories":[9497],"tags":[],"class_list":["post-158291","post","type-post","status-publish","format-standard","hentry","category-non-categorizzato"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.7 (Yoast SEO v27.8) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>OneDesk e la vulnerabilit\u00e0 di Log4j | Software OneDesk<\/title>\n<meta name=\"description\" content=\"OneDesk \u00e8 helpdesk e gestione dei progetti in uno. Scopri come OneDesk ha risposto alla vulnerabilit\u00e0 Log4j qui.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/\" \/>\n<meta property=\"og:locale\" content=\"it_IT\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"OneDesk e la vulnerabilit\u00e0 di Log4j | Software OneDesk\" \/>\n<meta property=\"og:description\" content=\"OneDesk \u00e8 helpdesk e gestione dei progetti in uno. Scopri come OneDesk ha risposto alla vulnerabilit\u00e0 Log4j qui.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/\" \/>\n<meta property=\"og:site_name\" content=\"OneDesk\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/OneDeskApp\" \/>\n<meta property=\"article:published_time\" content=\"2021-12-23T14:58:47+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-12-23T14:58:53+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/onedesk.com\/wp-content\/uploads\/2020\/04\/OneDesk-Logo.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"server.admin@onedesk.com\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@OneDeskApp\" \/>\n<meta name=\"twitter:site\" content=\"@OneDeskApp\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"server.admin@onedesk.com\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"OneDesk e la vulnerabilit\u00e0 di Log4j | Software OneDesk","description":"OneDesk \u00e8 helpdesk e gestione dei progetti in uno. Scopri come OneDesk ha risposto alla vulnerabilit\u00e0 Log4j qui.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/","og_locale":"it_IT","og_type":"article","og_title":"OneDesk e la vulnerabilit\u00e0 di Log4j | Software OneDesk","og_description":"OneDesk \u00e8 helpdesk e gestione dei progetti in uno. Scopri come OneDesk ha risposto alla vulnerabilit\u00e0 Log4j qui.","og_url":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/","og_site_name":"OneDesk","article_publisher":"https:\/\/www.facebook.com\/OneDeskApp","article_published_time":"2021-12-23T14:58:47+00:00","article_modified_time":"2021-12-23T14:58:53+00:00","og_image":[{"width":1280,"height":800,"url":"https:\/\/onedesk.com\/wp-content\/uploads\/2020\/04\/OneDesk-Logo.png","type":"image\/png"}],"author":"server.admin@onedesk.com","twitter_card":"summary_large_image","twitter_creator":"@OneDeskApp","twitter_site":"@OneDeskApp","twitter_misc":{"Written by":"server.admin@onedesk.com","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":["Article","BlogPosting"],"@id":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/#article","isPartOf":{"@id":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/"},"author":{"name":"server.admin@onedesk.com","@id":"https:\/\/onedesk.com\/it\/#\/schema\/person\/3ba6d9c3a879c06cc879540e87994433"},"headline":"OneDesk e la vulnerabilit\u00e0 di Log4j","datePublished":"2021-12-23T14:58:47+00:00","dateModified":"2021-12-23T14:58:53+00:00","mainEntityOfPage":{"@id":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/"},"wordCount":200,"commentCount":0,"publisher":{"@id":"https:\/\/onedesk.com\/it\/#organization"},"articleSection":["Non categorizzato"],"inLanguage":"it-IT","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/","url":"https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/","name":"OneDesk e la vulnerabilit\u00e0 di Log4j | Software OneDesk","isPartOf":{"@id":"https:\/\/onedesk.com\/it\/#website"},"datePublished":"2021-12-23T14:58:47+00:00","dateModified":"2021-12-23T14:58:53+00:00","description":"OneDesk \u00e8 helpdesk e gestione dei progetti in uno. Scopri come OneDesk ha risposto alla vulnerabilit\u00e0 Log4j qui.","inLanguage":"it-IT","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onedesk.com\/it\/onedesk-e-il-log4j-vulnerabilita\/"]}]},{"@type":"WebSite","@id":"https:\/\/onedesk.com\/it\/#website","url":"https:\/\/onedesk.com\/it\/","name":"OneDesk","description":"Software per la gestione dei progetti e l'helpdesk","publisher":{"@id":"https:\/\/onedesk.com\/it\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onedesk.com\/it\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"it-IT"},{"@type":"Organization","@id":"https:\/\/onedesk.com\/it\/#organization","name":"OneDesk","url":"https:\/\/onedesk.com\/it\/","logo":{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/onedesk.com\/it\/#\/schema\/logo\/image\/","url":"https:\/\/onedesk.com\/wp-content\/uploads\/2016\/01\/white-logo-small.png","contentUrl":"https:\/\/onedesk.com\/wp-content\/uploads\/2016\/01\/white-logo-small.png","width":207,"height":40,"caption":"OneDesk"},"image":{"@id":"https:\/\/onedesk.com\/it\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/OneDeskApp","https:\/\/x.com\/OneDeskApp","https:\/\/www.instagram.com\/onedeskapp\/","https:\/\/www.linkedin.com\/company\/onedesk-inc-1","https:\/\/www.pinterest.com\/onedesk\/","https:\/\/www.youtube.com\/user\/OneDeskApp"],"description":"OneDesk is a work management app for managing customer \/ end-user support, projects, and financials.","email":"support@onedesk.com","telephone":"1-855-663-3375","numberOfEmployees":{"@type":"QuantitativeValue","minValue":"11","maxValue":"50"}},{"@type":"Person","@id":"https:\/\/onedesk.com\/it\/#\/schema\/person\/3ba6d9c3a879c06cc879540e87994433","name":"server.admin@onedesk.com","image":{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=96&d=mm&r=g","caption":"server.admin@onedesk.com"},"url":"https:\/\/onedesk.com\/it\/author\/server-adminonedesk-com\/"}]}},"jetpack_featured_media_url":"","tpgb_featured_images":null,"tpgb_post_meta_info":{"get_date":"December 23, 2021","get_modified_date":"December 23, 2021","category_list":{"category":[{"term_id":9497,"name":"Non categorizzato","slug":"non-categorizzato","term_group":0,"term_taxonomy_id":9497,"taxonomy":"category","description":"","parent":0,"count":2,"filter":"raw","term_order":"0"}],"post_tag":false,"post_format":false},"author_name":"server.admin@onedesk.com","author_url":"https:\/\/onedesk.com\/it\/author\/server-adminonedesk-com\/","author_email":"server.admin@onedesk.com","author_website":"","author_description":"","author_facebook":"","author_twitter":"","author_instagram":"","author_role":["administrator"],"author_firstname":"","author_lastname":"","user_login":"server.admin@onedesk.com","author_avatar":"<img alt='' src='https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=200&#038;d=mm&#038;r=g' srcset='https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=400&#038;d=mm&#038;r=g 2x' class='avatar avatar-200 photo' height='200' width='200' decoding='async'\/>","author_avatar_url":"https:\/\/secure.gravatar.com\/avatar\/a37d6b270be81ecbf4ab9ca7260f2d1ee4d0295343706f0648e9d7a0d75243d3?s=96&d=mm&r=g","comment_count":0,"post_likes":0,"post_views":0},"tpgb_post_category":{"category":"<a href=\"https:\/\/onedesk.com\/it\/category\/non-categorizzato\/\" alt=\"Non categorizzato\"  class=\"category-non-categorizzato\">Non categorizzato<\/a> "},"jetpack_shortlink":"https:\/\/wp.me\/pfpPaI-Fb5","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/posts\/158291","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/comments?post=158291"}],"version-history":[{"count":1,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/posts\/158291\/revisions"}],"predecessor-version":[{"id":158294,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/posts\/158291\/revisions\/158294"}],"wp:attachment":[{"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/media?parent=158291"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/categories?post=158291"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onedesk.com\/it\/wp-json\/wp\/v2\/tags?post=158291"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}