7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.127 Low
EPSS
Percentile
95.4%
12/14/2021
High
Remote code execution vulnerability was found in Apache Log4j. Malicious users can exploit this vulnerability to execute arbitrary code.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Apache Log4j 1.2
Bosch Rexroth Bosch IoT gateway
Hitachi Energy nMarket CAISO
Hitachi Energy nMarket Global MISO SaaS
Hitachi Energy nMarket Global SPP SaaS
Hitachi Energy nMarket NE
Hitachi Energy nMarket NY
Hitachi Energy nMarket PJM
Hitachi Energy nMarket TX
Kaltura Blackboard Learn SaaS in the classic Learn experience
Kaltura Blackboard Learn Self- and Managed-Hosting
Lecia biosystem Aperio SAM DX Server For GT 450 DX
Lecia biosystem Aperio VERSA
Lecia biosystem CEREBRO
Lecia biosystem LIS Connect
ManageEngine Desktop Central
Vyaire medical Mirth Connect
Update to the latest version
Fixed in Log4j 2.15.0 (Log4j 1.x mitigation)
CVE-2021-4104
ACE
CVE-2021-41047.5Critical
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.127 Low
EPSS
Percentile
95.4%