Lucene search
+L

3 matches found

RedHat Linux
RedHat Linux
added 2022/01/20 6:19 p.m.6 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits21References7
RedHat Linux
RedHat Linux
added 2022/01/20 9:26 a.m.2 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits21References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/15 1:30 a.m.38 views

Security Bulletin: IBM Telco Network Cloud Manager - Performance is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046)

Summary Apache Log4j is used by IBM Telco Network Cloud Manager - Performance for logging and is vulnerable to denial of service and arbitrary code execution due to Apache Log4j CVE-2021-45105 and CVE-2021-45046. The fix includes Apache Log4j v2.17. Vulnerability Details CVEID: CVE-2021-45105...

10CVSS0.4AI score0.99999EPSS
Exploits359Affected Software1
Rows per page
Query Builder