Apache Log4j 2.0.x Multiple Vulnerabilities (HTTP Web Root, Log4Shell) - Active Check CVE-2021-44228CVE-2021-45046

Name: Apache Log4j 2.0.x Multiple Vulnerabilities (HTTP Web Root, Log4Shell) - Active Check (CVE-2021-44228, CVE-2021-45046)
Published: 2021-12-11T00:00:00.000Z

Severity

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://logging.apache.org/log4j/2.x/security.html https://issues.apache.org/jira/browse/LOG4J2-3198 https://issues.apache.org/jira/browse/LOG4J2-3201 https://github.com/apache/logging-log4j2/pull/607 https://github.com/apache/logging-log4j2/pull/608 https://github.com/advisories/GHSA-jfh8-c2jp-5v3q https://www.openwall.com/lists/oss-security/2021/12/10/1 https://www.lunasec.io/docs/blog/log4j-zero-day/https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html https://github.com/YfryTchsGD/Log4jAttackSurface http://packetstormsecurity.com/files/165225/Apache-Log4j2-2.14.1-Remote-Code-Execution.html https://github.com/tangxiaofeng7/apache-log4j-poc https://github.com/0x0021h/apache-log4j-rce https://securitylab.github.com/advisories/GHSL-2021-1054_GHSL-2021-1055_log4j2/
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: Dec 11, 2021
Software Type: Not available
Vendor: Not available
Product: Not available

Detect this vulnerability now!

Check your clients' targets (or your own) for this vulnerability and thousands more! Get proof for validation with our ethical hacking toolkit.

Compare paid plans Free access