Home

CVE-2021-44228

Description

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.

Risk Information

Base Score
10.0
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
94.358

Associated Vulnerability

VulnerabilityOS Platform
Apache Log4Shell vulnerability (CVE-2021-44228)Windows
Vulnerabilities CVE-2021-44228 are fixed in Couchbase Server Enterprise Edition 7.0.3Windows
Vulnerabilities CVE-2021-44228 are fixed in Couchbase Server Enterprise Edition 6.6.4Windows
Multiple Vulnerabilities are affected in IBM Cognos Analytics 11.0.13Windows
Vulnerabilities CVE-2021-45105,CVE-2021-44228 are fixed in Apache - Log4j Core 2.3.1Windows
Vulnerabilities CVE-2021-45046,CVE-2021-44228 are fixed in Apache - Log4j Core 2.12.2Windows
Vulnerabilities CVE-2021-44228 are fixed in Apache - Log4j Core 2.15.0Windows
Multiple Vulnerabilities are affected in Netapp Active Iq Unified Manager 2.3Windows
Multiple Vulnerabilities are affected in Netapp Oncommand Insight 2.3Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.3.0Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.5Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.6Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.1Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.2Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.4.2Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.4Windows
Vulnerabilities CVE-2021-44228,CVE-2021-45046 are affected in Siemens Mendix 2.3Windows
Vulnerabilities CVE-2021-44228,CVE-2021-45046 are affected in Siemens Teamcenter 2.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.0Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.11Windows
Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 6.1.1.0Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.10.4Windows
Multiple Vulnerabilities are affected in IBM MQ 9.1Windows
Multiple Vulnerabilities are affected in IBM MQ 9.2Windows
Multiple Vulnerabilities are affected in IBM Business Automation Workflow 21.0Windows
Multiple Vulnerabilities are affected in IBM App Connect Enterprise 11.0.0.15Windows
Multiple Vulnerabilities are affected in IBM App Connect Enterprise 12.0.3.0Windows
Vulnerabilities CVE-2021-44228 are affected in Guicedee - log4j-core 1.2.1.2Windows
Vulnerabilities CVE-2021-45105,CVE-2021-44832,CVE-2021-45046,CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 1.9.2Windows
Vulnerabilities CVE-2021-45046,CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 1.10.8Windows
Vulnerabilities CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 1.11.10Windows
Vulnerabilities CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 2.0.11Windows
Vulnerabilities CVE-2021-44228 are affected in Xbib - log4j 6.3.2.1Windows
Vulnerabilities CVE-2021-44228 are affected in Co - log4j-core 2.6.3Windows
Vulnerabilities CVE-2021-44228 are affected in Command Line Tools for XCode for Mac 13.2Mac
Apache Log4j - Logging Framework for Java (USN-5192-1) liblog4j2-java_2.10.0-2ubuntu0.1_all.debLinux
Vulnerabilities CVE-2021-44228 are fixed in MySQL Enterprise Monitor 8.0.28 (For Linux)Linux
Vulnerabilities CVE-2021-45105,CVE-2021-44228 are fixed in Apache - Log4j Core for Linux 2.3.1Linux
Vulnerabilities CVE-2021-45046,CVE-2021-44228 are fixed in Apache - Log4j Core for Linux 2.12.2Linux
Vulnerabilities CVE-2021-44228 are fixed in Apache - Log4j Core for Linux 2.15.0Linux
Vulnerabilities CVE-2021-44228 are affected in Guicedee - log4j-core for Linux 1.2.1.2Linux
Vulnerabilities CVE-2021-45105,CVE-2021-44832,CVE-2021-45046,CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 for Linux 1.9.2Linux
Vulnerabilities CVE-2021-45046,CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 for Linux 1.10.8Linux
Vulnerabilities CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 for Linux 1.11.10Linux
Vulnerabilities CVE-2021-44228 are fixed in Ops4j - pax-logging-log4j2 for Linux 2.0.11Linux
Vulnerabilities CVE-2021-44228 are affected in Xbib - log4j for Linux 6.3.2.1Linux
Vulnerabilities CVE-2021-44228 are affected in Co - log4j-core for Linux 2.6.3Linux
Improper Input Validation Vulnerability (CVE-2021-44228)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-607901Command Line Tools for XCode for Mac 15.3 (Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234