Lucene search
K

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

🗓️ 10 Dec 2021 22:35:00Reported by PuliczekType 
githubexploit
 githubexploit
🔗 github.com👁 667 Views

Exploit for Improper Input Validation in Apache Log4J. CVE-2021-44228, works on log4j: 2.0 <= Apache log4j <= 2.14.1 and Java version 6u211+, 7u201+, 8u191+, 11.0.1+. Windows Defender removes .java files with jndi:ldap:. Attacker can bypass blocks using system environment variables, lower or upper lookup, "::-" notation, invalid Unicode characters with upper, system properties, ":-" notation, date, HTML URL encoding, and non-existent lookup. Polymorphic (JSON REST API request)

Related

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

22 Aug 2025 08:43Current
9.6High risk
Vulners AI Score9.6
CVSS 29.3
CVSS 3.110
EPSS0.99999
667