Log4Shell Public Bug Bounty Specials
Log4Shell (CVE-2021-44228) is an RCE 0day in Log4j, a popular Java logging framework. Many companies have put together bug bounty specials for anyone who can demonstrate that they are still vulnerable to Log4Shell.
|Company||Bug Bounty||Amount (USD)||Dates|
|Asana||BugCrowd||$25,000||Tue Dec 14 2021 — no specified date|
|Coinbase||HackerOne||$30,000||Wed Dec 15 2021 — no specified date|
|Glassdoor||HackerOne||$5,000||Tue Dec 14 2021 — no specified date|
|Hyatt||HackerOne||$25,000||Mon Dec 13 2021 — Mon Dec 20 2021|
If you have any questions or see anything missing from this list, please contact me on Twitter or however else you find me.