Elastic Elasticsearch Multiple Log4j Vulnerabilities (ESA-2021-31, Log4Shell) - Version Check CVE-2021-44228CVE-2021-45046

Name: Elastic Elasticsearch Multiple Log4j Vulnerabilities (ESA-2021-31, Log4Shell) - Version Check (CVE-2021-44228, CVE-2021-45046)
Published: 2021-12-15T00:00:00.000Z

Severity

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476 https://discuss.elastic.co/t/elasticsearch-5-0-0-5-6-10-and-6-0-0-6-3-2-log4j-cve-2021-44228-cve-2021-45046-remediation/292054 https://logging.apache.org/log4j/2.x/security.html https://github.com/advisories/GHSA-jfh8-c2jp-5v3q https://github.com/advisories/GHSA-7rjr-3q55-vv33 https://www.openwall.com/lists/oss-security/2021/12/10/1 https://www.openwall.com/lists/oss-security/2021/12/14/4 https://www.lunasec.io/docs/blog/log4j-zero-day/https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: Dec 15, 2021
Software Type: Not available
Vendor: Not available
Product: Not available

Detect & validate this vulnerability

Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.

Compare paid plans See all tools