Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/06/27 6:52 a.m.40 views

Security Bulletin: A Remote Attack Vulnerability in Apache Log4j affects IBM Common Licensing's License Key Server (LKS) Administration And Reporting Tool (ART) and its Agent(CVE-2021-4104,CVE-2021-44832,CVE-2021-3100,CVE-2022-33915).

Summary There is a high risk Remote Attack Vulnerability in Apache Log4j CVE-2021-4104,CVE-2021-44832,CVE-2021-3100,CVE-2022-33915 which is used by IBM LKS Administration And Reporting Tool and its Agent. A fix is available to address the vulnerability. Vulnerability Details CVEID: CVE-2022-33915...

8.8CVSS1.5AI score0.97906EPSS
Exploits15Affected Software1
NVD
NVD
added 2022/06/17 1:15 p.m.40 views

CVE-2022-33915

Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3.5 are affected by a race condition that could lead to a local privilege escalation. This Hotpatch package is not a replacement for updating to a log4j version that mitigates CVE-2021-44228 or...

7CVSS0.00186EPSS
Exploits0References2
OSV
OSV
added 2022/06/17 1:15 p.m.5 views

CVE-2022-33915

Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3.5 are affected by a race condition that could lead to a local privilege escalation. This Hotpatch package is not a replacement for updating to a log4j version that mitigates CVE-2021-44228 or...

7CVSS6.8AI score0.00186EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/17 1:15 p.m.217 views

CVE-2022-33915

Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3.5 are affected by a race condition that could lead to a local privilege escalation. This Hotpatch package is not a replacement for updating to a log4j version that mitigates CVE-2021-44228 or...

10CVSS7.1AI score0.99999EPSS
In wildExploits354References3
Cvelist
Cvelist
added 2022/06/17 7:1 a.m.44 views

CVE-2022-33915

Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3.5 are affected by a race condition that could lead to a local privilege escalation. This Hotpatch package is not a replacement for updating to a log4j version that mitigates CVE-2021-44228 or...

7CVSS8.5AI score0.00186EPSS
Exploits0References2
CVE
CVE
added 2022/06/17 7:1 a.m.790 views

CVE-2022-33915

CVE-2022-33915 describes a race-condition in the Amazon AWS log4j-cve-2021-44228-hotpatch package (pre-1.3.5). The hotpatch iterates running Java processes and loads a patch with the same permissions, which can be exploited by a local user to cause a privileged execution when a custom Java proces...

7CVSS8.9AI score0.00186EPSS
In wildExploits0References2Affected Software1
Rows per page
Query Builder