Dangerous hole in Apache Commons Text – like Log4Shell all over again
Tags
attack-pattern: Data Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID c1976f14-175e-4fbc-aae2-3f2c179a51a3
Fingerprint 9e489599ec123fd1
Analysis status DONE
Considered CTI value 1
Text language
Published Oct. 18, 2022, 2:26 a.m.
Added to db Oct. 18, 2022, 5:07 a.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline Dangerous hole in Apache Commons Text – like Log4Shell all over again
Title Dangerous hole in Apache Commons Text – like Log4Shell all over again
Detected Hints/Tags/Attributes 46/1/14
Source URLs
Redirection Url
Details Source https://nakedsecurity.sophos.com/2022/10/18/dangerous-hole-in-apache-commons-text-like-log4shell-all-over-again/
URL Provider
Details Provider Source level domain
Details sophos.com nakedsecurity.sophos.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 29 
cve-2022-42889
Details Domain 1 
substitutor.java
Details Domain 12 
apache.org
Details Domain 3 
document.properties
Details Domain 33 
www.apache.org
Details Domain 70 
nakedsecurity.sophos.com
Details Domain 831 
example.com
Details File 1 
substitutor.java
Details File 10 
event.key
Details File 16 
0.jar
Details IPv4 2 
192.0.66.227
Details Url 2 
http://www.apache.org
Details Url 2 
https://www.apache.org
Details Url 51 
https://example.com