Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

Veeam softwareVEEAM:KB4254

HistoryDec 13, 2021 - 12:00 a.m.

Log4j Vulnerability (CVE-2021-44228)

Vulners
Veeam
Log4j Vulnerability (CVE-2021-44228)

2021-12-1300:00:00

Veeam software

www.veeam.com

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

0.976 High

EPSS

Percentile

100.0%

JSON

Veeam products are not affected by this vulnerability. Apache Logs4j is not in use by any Veeam products.

threatpost 36

nessus 5

thn 4

trellix 1

githubexploit 57

kitploit 1

ibm 54

hivepro 1

osv 3

fedora 1

rapid7blog 6

mmpc 1

freebsd 1

suse 2

hackerone 1

openvas 10

nvd 1

cisa 1

packetstorm 2

metasploit 2

ubuntu 1

zdt 1

wallarmlab 1

github 1

ics 1

msrc 1

nuclei 1

redhat 1

mageia 1

impervablog 1

threatpost

The Log4j Vulnerability Puts Pressure on the Security World

2022-01-18 20:21:04

Emotet Now Spreading Through Malicious Excel Files

2022-02-16 13:39:33

Cyberattackers Cook Up Employee Personal Data Heist for Meyer

2022-02-22 20:41:48

nessus

FreeBSD : serviio -- affected by log4j vulnerability (1ea05bb8-5d74-11ec-bb1e-001517a2e1a4)

2021-12-15 00:00:00

Apache Apereo CAS Log4Shell Direct Check (CVE-2021-44228)

2022-07-26 00:00:00

Cisco Identity Services Log4j Engine Remote Code Execution (cisco-sa-apache-log4j-qRuKNEbd)

2022-05-02 00:00:00

thn

Iranian Hackers Exploiting Unpatched Log4j 2 Bugs to Target Israeli Organizations

2022-08-27 03:23:00

NHS Warns of Hackers Targeting Log4j Flaws in VMware Horizon

2022-01-08 07:04:00

Last Years Open Source - Tomorrow's Vulnerabilities

2022-11-01 12:04:00

trellix

Log4J and The Memory That Knew Too Much

2022-01-19 00:00:00

githubexploit

Exploit for Deserialization of Untrusted Data in Apache Log4J

2022-04-18 09:16:05

Exploit for Deserialization of Untrusted Data in Apache Log4J

2022-01-20 10:34:48

Exploit for Deserialization of Untrusted Data in Apache Log4J

2021-12-23 01:59:03

kitploit

NodeSecurityShield - A Developer And Security Engineer Friendly Package For Securing NodeJS Applications

2022-05-14 21:30:00

ibm

Security Bulletin: Vulnerabilities in log4j could affect Name Analyzer in IBM InfoSphere Global Name Management (CVE-2021-44228)

2022-04-20 17:04:55

Security Bulletin: A Remote Attack Vulnerability in Apache Log4j affects Engineering Lifecycle Management and IBM Engineering products

2022-01-11 17:38:09

Security Bulletin: IBM Cloud Pak for Multicloud Management has applied security fixes for its use of Log4j for CVE-2021-44228

2022-01-05 19:09:46

hivepro

Monti ransomware infiltrates networks via the well-known Log4Shell

2022-09-16 10:51:13

osv

apache-log4j2 - security update

2021-12-12 00:00:00

apache-log4j2 vulnerability

2021-12-17 12:46:46

apache-log4j2 vulnerability

2021-12-14 13:39:20

fedora

[SECURITY] Fedora 34 Update: jansi-2.1.1-4.fc34

2021-12-22 01:14:26

rapid7blog

Being Naughty to See Who Was Nice: Machine Learning Attacks on Santa’s List

2022-01-14 14:46:41

Log4Shell 2 Months Later: Security Strategies for the Internet's New Normal

2022-02-17 18:00:00

Sharing the Gifts of Cybersecurity – Or, a Lesson From My First Year Without Santa

2022-01-03 15:00:00

mmpc

Build a stronger cybersecurity team through diversity and training

2022-01-20 17:00:00

freebsd

graylog -- include log4j patches

2021-12-10 00:00:00

suse

Security update for log4j (important)

2021-12-12 00:00:00

Security update for log4j (important)

2021-12-13 00:00:00

hackerone

U.S. Dept Of Defense: Log4Shell: RCE 0-day exploit on █████████

2021-12-16 18:32:13

openvas

Fedora: Security Advisory for log4j (FEDORA-2021-66d6c484f3)

2021-12-23 00:00:00

Apache JSPWiki 2.11.0 Log4j RCE Vulnerability (Log4Shell) - Active Check

2021-12-20 00:00:00

Mageia: Security Advisory (MGASA-2021-0556)

2022-01-28 00:00:00

nvd

CVE-2021-44228

2021-12-10 10:15:09

cisa

Ivanti Updates Log4j Advisory with Security Updates for Multiple Products

2022-01-14 00:00:00

packetstorm

Apache Log4j2 2.14.1 Information Disclosure

2021-12-14 00:00:00

UniFi Network Application Unauthenticated Log4Shell Remote Code Execution

2022-01-24 00:00:00

metasploit

Log4Shell HTTP Header Injection

2021-12-29 14:10:07

Log4Shell HTTP Scanner

2021-12-15 13:45:24

ubuntu

Apache Log4j 2 vulnerability

2021-12-17 00:00:00

zdt

UniFi Network Application Unauthenticated Log4Shell Remote Code Execution Exploit

2022-01-24 00:00:00

wallarmlab

Log4j 0day mitigation update CVE-2021-44228

2021-12-10 20:56:40

github

Apache Log4j Remote Code Execution

2021-12-14 21:07:14

ics

Karakurt Data Extortion Group

2023-12-12 12:00:00

msrc

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2

2021-12-12 08:00:00

nuclei

Apache Log4j2 Remote Code Injection

2021-12-11 19:26:50

redhat

(RHSA-2021:5133) Critical: Red Hat AMQ Streams 1.6.5 release and security update

2021-12-14 21:09:18

mageia

Updated log4j packages fix security vulnerability

2021-12-11 04:02:37

impervablog

2021 in Review, Part 3: 5 Things Security Professionals Were Discussing this Year

2021-12-30 13:26:47

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

0.976 High

EPSS

Percentile

100.0%

JSON

Related for VEEAM:KB4254