Lucene search
K

12 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/06/10 4:52 p.m.65 views

Security Bulletin: IBM Jazz for Service Management is vulnerable to a Apache Log4j vulnerabilities(CVE-2021-45105, CVE-2021-45046)

Summary Based on current information and analysis, IBM Jazz for Service Management does not use Apache log4j-core library which is vulnerable to CVE-2021-45105, CVE-2021-45046 . However, IBM Jazz for Service Management may be impacted because the old version of Log4j-1.2-api and Log4j-api are use...

10CVSS1AI score0.99999EPSS
Exploits355Affected Software1
RedHat Linux
RedHat Linux
added 2022/04/20 2:52 p.m.5 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/04/11 1:0 p.m.6 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/04/11 1:0 p.m.7 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/01/20 6:55 p.m.3 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/01/20 6:19 p.m.5 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/01/20 4:0 p.m.2 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/01/20 12:12 p.m.8 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2022/01/20 11:39 a.m.3 views

log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

A flaw was found in the Apache Log4j logging library 2.x. when the logging configuration uses a non-default Pattern Layout with a Context Lookup. Attackers with control over Thread Context Map MDC input data can craft malicious input data that contains a recursive lookup and can cause Denial of...

5.9CVSS7.3AI score0.99999EPSS
Exploits20References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/14 1:14 p.m.79 views

Security Bulletin: Vulnerability in Apache Log4j affects Content Collector for Email (CVE-2021-45105)

Summary Apache Log4j open source library is used by Content Collector for Email. This bulletin describes the upgrades necessary to address the vulnerability. Vulnerability Details CVEID: CVE-2021-45105 DESCRIPTION: Apache Log4j is vulnerable to a denial of service, caused by the failure to protec...

5.9CVSS0.7AI score0.99999EPSS
Exploits20Affected Software1
Debian
Debian
added 2021/12/18 8:39 p.m.68 views

[SECURITY] [DSA 5024-1] apache-log4j2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5024-1 [email protected] https://www.debian.org/security/ Markus Koschany December 18, 2021 https://www.debian.org/security/faq -...

5.9CVSS8.6AI score0.99999EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2021/12/18 12:0 a.m.77 views

Apache Log4j 2.x < 2.17.0 DoS

The version of Apache Log4j on the remote host is 2.x 2.3.1 / 2.13.2 / 2.17.0. It is, therefore, affected by a denial of service vulnerability. Apache Log4j2 versions 2.0-alpha1 through 2.16.0 did not protect from uncontrolled recursion from self-referential lookups. When the logging configuratio...

5.9CVSS7.5AI score0.99999EPSS
Exploits20References3
Rows per page
Query Builder