Log4j2 Vulnerability "Log4Shell" (CVE-2021-44228)
Tags
| attack-pattern: | Data Dns - T1071.004 Dns - T1590.002 Exploits - T1587.004 Exploits - T1588.005 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 20dbf627-add0-4a43-b624-fc8e4e47d255 |
| Fingerprint | ce90545746878c81 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 7, 2024, midnight |
| Added to db | Nov. 12, 2024, 11:51 a.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | Log4j2 Vulnerability "Log4Shell" (CVE-2021-44228) |
| Title | Log4j2 Vulnerability "Log4Shell" (CVE-2021-44228) |
| Detected Hints/Tags/Attributes | 33/1/18 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 397 | cve-2021-44228 |
|
| Details | Domain | 23 | logging.apache.org |
|
| Details | Domain | 1 | bug.cyberkendra.com |
|
| Details | Domain | 18 | issues.apache.org |
|
| Details | Domain | 1 | gitbox.apache.org |
|
| Details | Domain | 6 | www.greynoise.io |
|
| Details | Domain | 3 | docs.oracle |
|
| Details | Domain | 2 | ldap.com |
|
| Details | File | 8 | ldap.obj |
|
| Details | File | 64 | security.html |
|
| Details | File | 816 | index.html |
|
| Details | Url | 1 | https://logging.apache.org/log4j2/2.x |
|
| Details | Url | 1 | https://logging.apache.org/log4j2/2.x/security.html |
|
| Details | Url | 1 | https://bug.cyberkendra.com/2021/12/09/log4j22-remote-code-execution |
|
| Details | Url | 1 | https://issues.apache.org/jira/browse/log4j222-3198 |
|
| Details | Url | 1 | https://gitbox.apache.org/repos/asf?p=logging-log4j2.git |
|
| Details | Url | 2 | https://www.greynoise.io/viz/query/?gnql=cve |
|
| Details | Url | 1 | https://arstechnica.com/information-technology/2021/12/minecraft-and-other-apps-face-serious-threat-from-new-code-execution-bug |