Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
amazonAmazonALAS-2022-1562
HistoryJan 18, 2022 - 8:15 p.m.

Important: log4j

2022-01-1820:15:00
alas.aws.amazon.com
61

0.874 High

EPSS

Percentile

98.6%

JSON

Issue Overview:

It was found that when using remote logging with log4j socket server the log4j server would deserialize any log event received via TCP or UDP. An attacker could use this flaw to send a specially crafted log event that, during deserialization, would execute arbitrary code in the context of the logger application. (CVE-2017-5645)

A flaw was discovered in Log4j, where a vulnerable SocketServer class may lead to the deserialization of untrusted data. This flaw allows an attacker to remotely execute arbitrary code when combined with a deserialization gadget. (CVE-2019-17571)

A flaw was found in the Java logging library Apache Log4j in version 1.x. JMSAppender in Log4j 1.x is vulnerable to deserialization of untrusted data. This allows a remote attacker to execute code on the server if the deployed application is configured to use JMSAppender and to the attacker’s JNDI LDAP endpoint. (CVE-2021-4104)

Affected Packages:

log4j

Issue Correction:
Run yum update log4j to update your system.

New Packages:

noarch:  
    log4j-manual-1.2.17-16.12.amzn1.noarch  
    log4j-1.2.17-16.12.amzn1.noarch  
    log4j-javadoc-1.2.17-16.12.amzn1.noarch  
  
src:  
    log4j-1.2.17-16.12.amzn1.src

Additional References

Red Hat: CVE-2017-5645, CVE-2019-17571, CVE-2021-4104

Mitre: CVE-2017-5645, CVE-2019-17571, CVE-2021-4104

Related

nessus 29
redhatcve 2
amazon 1
veracode 3
redhat 15
githubexploit 2
centos 2
attackerkb 1
ibm 74
f5 2
osv 5
debiancve 2
checkpoint_advisories 2
cvelist 2
fedora 6
cve 2
openvas 28
seebug 1
symantec 2
oraclelinux 3
atlassian 1
ubuntucve 2
github 2
prion 2
myhack58 2
cloudlinux 1
mageia 1
cnvd 1
kaspersky 1
gentoo 1
ubuntu 1
nessus
nessus
Amazon Linux 2 : log4j (ALAS-2022-1739)
2023-08-23 00:00:00
RHEL 5 / 6 : Red Hat JBoss Enterprise Application Platform 5.2 (RHSA-2017:3399)
2017-12-13 00:00:00
Amazon Linux AMI : log4j (ALAS-2022-1562)
2022-01-20 00:00:00
redhatcve
redhatcve
CVE-2017-5645
2019-10-10 10:12:57
CVE-2019-17571
2020-04-05 23:06:12
amazon
amazon
Medium: log4j
2022-01-18 21:37:00
veracode
veracode
Remote Code Execution (RCE)
2017-04-18 01:36:45
Arbitrary Code Execution
2019-12-23 04:57:47
Remote Code Execution (RCE)
2019-01-15 09:17:41
redhat
redhat
(RHSA-2017:3399) Important: Red Hat JBoss Enterprise Application Platform 5.2 security update
2017-12-07 17:04:23
(RHSA-2017:2423) Important: log4j security update
2017-08-07 07:26:13
(RHSA-2017:3400) Important: Red Hat JBoss Enterprise Application Platform 5.2 security update
2017-12-07 17:04:46
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Apache Log4J
2019-12-25 16:46:11
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-13 07:48:49
centos
centos
log4j security update
2017-08-31 18:57:53
log4j security update
2021-12-21 21:36:17
attackerkb
attackerkb
CVE-2019-17571
2019-12-20 00:00:00
ibm
ibm
Security Bulletin: Due to use of Apache Log4j, IBM QRadar SIEM is affected by arbitrary code execution (CVE-2019-17571, CVE-2021-44832, CVE-2021-4104)
2022-11-01 14:32:05
Security Bulletin: Apache-Log4j (Publicly disclosed vulnerability)
2021-12-18 08:39:03
Security Bulletin: Vulnerability in Apache Log4j may affect Cúram Social Program Management (CVE-2019-17571)
2021-11-29 13:23:28
f5
f5
K61529042 : Log4j vulnerability CVE-2019-17571
2020-04-08 00:00:00
K23173103 : log4j vulnerability CVE-2017-5645
2018-01-31 00:00:00
osv
osv
CVE-2019-17571
2019-12-20 17:15:11
Deserialization of Untrusted Data in Log4j
2020-01-06 18:43:38
CVE-2017-5645
2017-04-17 21:59:00
debiancve
debiancve
CVE-2019-17571
2019-12-20 17:15:11
CVE-2017-5645
2017-04-17 21:59:00
checkpoint_advisories
checkpoint_advisories
Apache Log4j Remote Code Execution (CVE-2017-5645)
2022-01-02 00:00:00
Apache Log4j Remote Code Execution (CVE-2019-17571)
2020-03-01 00:00:00
cvelist
cvelist
CVE-2017-5645
2017-04-17 21:00:00
CVE-2019-17571
2019-12-20 16:01:21
fedora
fedora
[SECURITY] Fedora 26 Update: log4j-2.7-4.fc26
2017-05-02 15:59:49
[SECURITY] Fedora 24 Update: log4j-2.5-3.fc24
2017-05-04 18:26:42
[SECURITY] Fedora 24 Update: log4j12-1.2.17-19.fc24
2017-06-12 19:29:11
cve
cve
CVE-2017-5645
2017-04-17 21:59:00
CVE-2019-17571
2019-12-20 17:15:11
openvas
openvas
Fedora Update for log4j12 FEDORA-2017-8348115acd
2017-06-13 00:00:00
RedHat Update for log4j RHSA-2017:2423-01
2017-08-08 00:00:00
Oracle BI Publisher Code Execution Vulnerability (cpuoct2018)
2018-10-18 00:00:00
seebug
seebug
Apache Log4j socket receiver deserialization vulnerability (CVE-2017-5645)
2017-04-18 00:00:00
symantec
symantec
Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2017-04-17 00:00:00
Apache Log4j CVE-2019-17571 Deserialization Remote Code Execution Vulnerability
2019-12-18 00:00:00
oraclelinux
oraclelinux
log4j security update
2017-08-09 00:00:00
log4j security update
2021-12-21 00:00:00
log4j security update
2022-01-26 00:00:00
atlassian
atlassian
Apache Log4j - Arbitrary Code Execution in confserver/confluence (master)
2020-03-02 03:58:39
ubuntucve
ubuntucve
CVE-2017-5645
2017-04-17 00:00:00
CVE-2019-17571
2019-12-20 00:00:00
github
github
Deserialization of Untrusted Data in Log4j
2020-01-06 18:43:38
Deserialization of Untrusted Data in Log4j
2020-01-06 18:43:49
prion
prion
Deserialization of untrusted data
2019-12-20 17:15:00
Code injection
2017-04-17 21:59:00
myhack58
myhack58
Apache logging component Log4j deserialization vulnerability affects all 2. x version-bug warning-the black bar safety net
2017-04-19 00:00:00
Apache logging component Log4j deserialization vulnerability affects all 2. x version-bug warning-the black bar safety net
2017-04-18 00:00:00
cloudlinux
cloudlinux
Fixed CVE-2019-17571 in log4j
2022-06-21 20:23:31
mageia
mageia
Updated davmail packages fix security vulnerability
2023-04-15 22:03:44
cnvd
cnvd
Apache Log4j Code Execution Vulnerability
2021-12-16 00:00:00
kaspersky
kaspersky
KLA12407 RCE vulnerability in Apache Log4j
2021-12-14 00:00:00
gentoo
gentoo
Minecraft Server: Remote Code Execution
2023-12-20 00:00:00
ubuntu
ubuntu
Apache Log4j 1.2 vulnerability
2022-02-08 00:00:00

0.874 High

EPSS

Percentile

98.6%

JSON
Related for ALAS-2022-1562
nessus29redhatcve2amazon1veracode3redhat15githubexploit2centos2attackerkb1ibm74f52osv5debiancve2checkpoint_advisories2cvelist2fedora6cve2openvas28seebug1symantec2oraclelinux3atlassian1ubuntucve2github2prion2myhack582cloudlinux1mageia1cnvd1kaspersky1gentoo1ubuntu1