Apache Log4j 2.0.x Multiple Vulnerabilities (TCP, Log4Shell) - Active Check CVE-2021-44228CVE-2021-45046
- Severity
- Vulnerability description
- Not available
- Risk description
- Not available
- Recommendation
- Not available
- References
- https://logging.apache.org/log4j/2.x/security.htmlhttps://issues.apache.org/jira/browse/LOG4J2-3198https://issues.apache.org/jira/browse/LOG4J2-3201https://github.com/apache/logging-log4j2/pull/607https://github.com/apache/logging-log4j2/pull/608https://github.com/advisories/GHSA-jfh8-c2jp-5v3qhttps://github.com/advisories/GHSA-7rjr-3q55-vv33https://www.openwall.com/lists/oss-security/2021/12/10/1https://www.openwall.com/lists/oss-security/2021/12/14/4https://www.lunasec.io/docs/blog/log4j-zero-day/https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.htmlhttps://github.com/YfryTchsGD/Log4jAttackSurfacehttp://packetstormsecurity.com/files/165225/Apache-Log4j2-2.14.1-Remote-Code-Execution.htmlhttps://github.com/tangxiaofeng7/apache-log4j-pochttps://github.com/0x0021h/apache-log4j-rcehttps://securitylab.github.com/advisories/GHSL-2021-1054_GHSL-2021-1055_log4j2/https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- OpenVAS
- Cisa Kev
Yes- Exploitable with Sniper
- No
- CVE Published
- Not available
- Detection added at
- Software Type
- Not available
- Vendor
- Not available
- Product
- Not available
Detect & validate this vulnerability
Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.