Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

024D29D3-309F-5B7F-B8C9-2AF149F9A213

HistoryFeb 28, 2023 - 4:12 p.m.

Exploit for Improper Input Validation in Apache Log4J

2023-02-2816:12:57

196

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

PoC of log4j, CVE - 2021 - 44228

Introduction

In this ...

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

ibm 45

threatpost 33

nessus 14

msrc 3

suse 1

githubexploit 53

qualysblog 2

impervablog 4

metasploit 3

rapid7blog 9

malwarebytes 1

thn 3

packetstorm 2

nuclei 1

freebsd 2

mageia 1

f5 1

kaspersky 1

openvas 6

ics 2

wallarmlab 1

redhat 1

zdt 3

hackerone 2

akamaiblog 1

cisa 1

osv 1

veracode 1

trellix 1

talosblog 1

ibm

Security Bulletin: IBM Unified Data Model for Healthcare is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)

2021-12-30 18:29:29

Security Bulletin: Vulnerability in Apache Log4j addressed in IBM Spectrum Symphony

2022-01-07 15:43:37

Security Bulletin: Vulnerabilities in Apache Log4j affect IBM App Connect for Manufacturing 2.0 (CVE-2021-44228)

2021-12-17 04:56:39

threatpost

Cybercriminals Swarm Windows Utility Regsvr32 to Spread Malware

2022-02-09 21:56:49

Ukraine Hit with Novel 'FoxBlade' Trojan Hours Before Invasion

2022-03-01 16:55:47

Microsoft Accounts Targeted by Russian-Themed Credential Harvesting

2022-03-01 10:57:23

nessus

openSUSE 15 Security Update : logback (openSUSE-SU-2021:1613-1)

2021-12-25 00:00:00

Debian DLA-2842-1 : apache-log4j2 - LTS security update

2021-12-13 00:00:00

openSUSE 15 Security Update : log4j (openSUSE-SU-2021:1586-1)

2021-12-17 00:00:00

msrc

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2

2021-12-12 08:00:00

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2

2021-12-12 05:28:18

CVE-2021-44228 Apache Log4j 2 に対するマイクロソフトの対応

2021-12-12 08:00:00

suse

Security update for log4j (important)

2021-12-13 00:00:00

githubexploit

Exploit for Deserialization of Untrusted Data in Apache Log4J

2022-03-03 17:18:43

Exploit for Uncontrolled Resource Consumption in Apache Log4J

2021-12-15 14:01:23

Exploit for Deserialization of Untrusted Data in Apache Log4J

2021-12-21 17:40:02

qualysblog

Qualys Study Reveals How Enterprises Responded to Log4Shell

2022-03-18 13:00:00

Log4Shell – Follow This Multi-Layered Approach for Detection and Remediation

2021-12-28 18:00:00

impervablog

5 Things We’ve Learned About CVE-2021-44228

2021-12-17 06:44:55

2021 in Review, Part 3: 5 Things Security Professionals Were Discussing this Year

2021-12-30 13:26:47

Analytics Are Essential for Effective Database Security

2022-01-13 15:23:02

metasploit

VMware vCenter Server Unauthenticated JNDI Injection RCE (via Log4Shell)

2022-01-12 20:34:45

MobileIron Core Unauthenticated JNDI Injection RCE (via Log4Shell)

2022-07-29 17:31:15

Log4Shell HTTP Scanner

2021-12-15 13:45:24

rapid7blog

How InsightAppSec Detects Log4Shell: Your Questions Answered

2022-02-15 15:16:37

The 2021 Naughty and Nice Lists: Cybersecurity Edition

2022-01-10 14:57:53

Log4Shell Strategic Response: 5 Practices for Vulnerability Management at Scale

2022-01-07 18:20:22

malwarebytes

What SMBs can do to protect against Log4Shell attacks

2021-12-15 20:59:31

thn

Iranian Hackers Compromised a U.S. Federal Agency's Network Using Log4Shell Exploit

2022-11-17 06:22:00

China suspends deal with Alibaba for not sharing Log4j 0-day first with the government

2021-12-22 11:53:00

Hackers Exploit Log4j Vulnerability to Infect Computers with Khonsari Ransomware

2021-12-14 11:09:00

packetstorm

VMware vCenter Server Unauthenticated Log4Shell JNDI Injection Remote Code Execution

2022-01-20 00:00:00

AD Manager Plus 7122 Remote Code Execution

2023-04-03 00:00:00

nuclei

Apache Log4j2 Remote Code Injection

2021-12-11 19:26:50

freebsd

bastillion -- log4j vulnerability

2021-12-10 00:00:00

serviio -- affected by log4j vulnerability

2021-12-13 00:00:00

mageia

Updated log4j packages fix security vulnerability

2021-12-11 04:02:37

K19026212 : Apache Log4j2 Remote Code Execution vulnerability CVE-2021-44228

2021-12-10 00:00:00

kaspersky

KLA12396 RCE vulnerability in Microsoft Developer Tools

2021-12-16 00:00:00

openvas

openSUSE: Security Advisory for log4j (openSUSE-SU-2021:3999-1)

2022-02-01 00:00:00

Ubuntu: Security Advisory (USN-5192-2)

2022-08-26 00:00:00

openSUSE: Security Advisory for log4j (openSUSE-SU-2021:1586-1)

2022-02-01 00:00:00

ics

Karakurt Data Extortion Group

2023-12-12 12:00:00

Johnson Controls exacq Enterprise Manager

2021-12-23 12:00:00

wallarmlab

5 things you must know about Log4Shell

2021-12-11 01:22:39

redhat

(RHSA-2021:5133) Critical: Red Hat AMQ Streams 1.6.5 release and security update

2021-12-14 21:09:18

zdt

Intel Data Center Manager 5.1 Local Privilege Escalation Vulnerability

2022-12-10 00:00:00

Apache Log4j2 2.14.1 - Information Disclosure Exploit

2021-12-14 00:00:00

VMware vCenter Server Unauthenticated Log4Shell JNDI Injection Remote Code Execution Exploit

2022-01-20 00:00:00

hackerone

Judge.me : Log4j RCE on https://judge.me/reviews

2021-12-15 10:30:12

U.S. Dept Of Defense: ██████████ running a vulnerable log4j

2021-12-11 00:16:38

akamaiblog

CVE-2021-44228 - Zero Day Vulnerability in Apache Log4j that allows remote code execution (RCE)

2021-12-10 21:00:00

cisa

Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems

2022-06-23 00:00:00

osv

Critical vulnerability in log4j may affect generated PEAR projects

2021-12-16 21:01:51

veracode

Remote Code Execution (RCE)

2021-12-10 15:09:45

trellix

Log4J and The Memory That Knew Too Much

2022-01-19 00:00:00

talosblog

How CVSS 4.0 changes (or doesn’t) the way we see vulnerability severity

2024-02-21 13:54:48

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

Related for 024D29D3-309F-5B7F-B8C9-2AF149F9A213