Apache Log4j 2.0.x Multiple Vulnerabilities (SMTP, Log4Shell) - Active Check CVE-2021-44228CVE-2021-45046

Name: Apache Log4j 2.0.x Multiple Vulnerabilities (SMTP, Log4Shell) - Active Check (CVE-2021-44228, CVE-2021-45046)
Published: 2022-01-20T00:00:00.000Z

Severity

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: https://logging.apache.org/log4j/2.x/security.html https://issues.apache.org/jira/browse/LOG4J2-3198 https://issues.apache.org/jira/browse/LOG4J2-3201 https://github.com/apache/logging-log4j2/pull/607 https://github.com/apache/logging-log4j2/pull/608 https://github.com/advisories/GHSA-jfh8-c2jp-5v3q https://github.com/advisories/GHSA-7rjr-3q55-vv33 https://www.openwall.com/lists/oss-security/2021/12/10/1 https://www.openwall.com/lists/oss-security/2021/12/14/4 https://www.lunasec.io/docs/blog/log4j-zero-day/https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html https://github.com/YfryTchsGD/Log4jAttackSurface http://packetstormsecurity.com/files/165225/Apache-Log4j2-2.14.1-Remote-Code-Execution.html https://github.com/tangxiaofeng7/apache-log4j-poc https://github.com/0x0021h/apache-log4j-rce https://securitylab.github.com/advisories/GHSL-2021-1054_GHSL-2021-1055_log4j2/https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: Jan 20, 2022
Software Type: Not available
Vendor: Not available
Product: Not available

Detect & validate this vulnerability

Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.

Compare paid plans See all tools