Lucene search

Exploit for Deserialization of Untrusted Data in Apache Log4J

🗓️ 29 Jun 2023 07:40:46Type

Scans for Apache Log4J remote command execution vulnerability CVE-2021-44228, using provided URL list, subdomain discovery, and source domain prefix. Requires httpx, curl, subfinder, assetfinder, and amass for domain scanning. Supports Burp collabrator or Interactsh. Offers help, domain or subdomain scanning, and example uses.

Reporter	Title	Published	Views	Family All 200
Tenable Nessus	FreeBSD : graylog -- include log4j patches (3fadd7e4-f8fb-45a0-a218-8fd6423c338f)	13 Dec 202100:00	–	nessus
Tenable Nessus	Ubuntu 16.04 ESM : Apache Log4j 2 vulnerability (USN-5192-2)	17 Dec 202100:00	–	nessus
Tenable Nessus	VMware vCenter Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028)	13 Dec 202100:00	–	nessus
Tenable Nessus	FreeBSD : OpenSearch -- Log4Shell (4b1ac5a3-5bd4-11ec-8602-589cfc007716)	13 Dec 202100:00	–	nessus
Tenable Nessus	Cisco SD-WAN vManage Log4j Remote Code Execution (cisco-sa-apache-log4j-qRuKNEbd)	16 May 202200:00	–	nessus
Tenable Nessus	VMware Horizon Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028)	7 Jan 202200:00	–	nessus
Tenable Nessus	Apache Apereo CAS Log4Shell Direct Check (CVE-2021-44228)	26 Jul 202200:00	–	nessus
CISA	Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems	23 Jun 202200:00	–	cisa
CISA	Ivanti Updates Log4j Advisory with Security Updates for Multiple Products	14 Jan 202200:00	–	cisa
IBM Security Bulletins	Security Bulletin: IBM Insurance Information Warehouse is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)	30 Dec 202118:32	–	ibm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Jun 2023 07:46Current

10High risk

Vulners AI Score10

CVSS29.3

CVSS310

EPSS0.97112