Summary:
CVE-2021-44228, also named Log4Shell or LogJam, is a Remote Code Execution (RCE) class vulnerability. If attackers manage to exploit it on one of the servers, they gain the ability to execute arbitrary code and potentially take full control of the system.
What makes CVE-2021-44228 especially dangerous is the ease of exploitation: even an inexperienced hacker can successfully execute an attack using this vulnerability. According to the researchers, attackers only need to force the application to write just one string to the log, and after that they are able to upload their own code into the application due to the message lookup substitution function.

Supporting Material/References:
Picture and Logs was Uploaded as a proof.

https://www.tenable.com/blog/cve-2021-44228-proof-of-concept-for-critical-apache-log4j-remote-code-execution-vulnerability

Remediation:
Update the log4j jar to 2.15 or 2.16

Impact

Successful attack leads Arbitary Code Execution on the application

ibm 44

githubexploit 53

akamaiblog 2

threatpost 41

nessus 9

redhat 4

rapid7blog 6

impervablog 2

kaspersky 3

fedora 1

qualysblog 3

hackerone 3

cisa_kev 1

hivepro 1

packetstorm 4

msrc 2

trellix 1

mssecure 1

talosblog 1

openvas 2

wallarmlab 2

trendmicroblog 1

amd 1

veracode 1

cisa 2

cve 1

osv 1

debiancve 1

thn 1

vmware 1

ubuntu 1

zdt 1

mscve 1

malwarebytes 1

ibm

Security Bulletin: The Apache Log4j (CVE-2021-44228) vulnerability affects z/TPF and TPF Operations Server

2021-12-20 20:53:23

Security Bulletin: Log4JShell Vulnerability affects Watson Knowledge Catalog InstaScan (CVE-2021-44228)

2021-12-17 04:55:42

Security Bulletin: Content Manager OnDemand for Multiplatforms is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)

2022-07-13 12:39:40

githubexploit

Exploit for Deserialization of Untrusted Data in Apache Log4J

2021-12-11 13:28:52

Exploit for Deserialization of Untrusted Data in Apache Log4J

2022-01-27 07:07:30

Exploit for Deserialization of Untrusted Data in Apache Log4J

2021-12-17 17:23:47

akamaiblog

Threat Intelligence on Log4j CVE: Key Findings and Their Implications

2021-12-17 19:30:00

CVE-2021-44228 - Patching is Recommended for Evolving Zero Day Vulnerability in Apache Log4j that allows remote code execution (RCE)

2021-12-11 11:00:53

threatpost

Wormhole Crypto Platform: 'Funds Are Safe' After $314M Heist

2022-02-03 18:28:14

Medusa Malware Joins Flubot's Android Distribution Network

2022-02-07 22:13:29

What the Log4Shell Bug Means for SMBs: Experts Weigh In

2021-12-14 17:54:47

nessus

VMware vCenter Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028)

2021-12-13 00:00:00

FreeBSD : graylog -- include log4j patches (3fadd7e4-f8fb-45a0-a218-8fd6423c338f)

2021-12-13 00:00:00

FreeBSD : OpenSearch -- Log4Shell (4b1ac5a3-5bd4-11ec-8602-589cfc007716)

2021-12-13 00:00:00

redhat

(RHSA-2021:5126) Critical: Red Hat Integration Camel Extensions for Quarkus GA security update

2021-12-14 16:15:45

(RHSA-2021:5093) Critical: Red Hat build of Eclipse Vert.x 4.1.5 SP1 security update

2021-12-14 15:57:34

(RHSA-2021:5130) Critical: Red Hat Integration Camel-K 1.6.2 release and security update

2021-12-14 17:51:25

rapid7blog

Log4Shell Makes Its Appearance in Hacker Chatter: 4 Observations

2021-12-14 21:05:17

[Security Nation] Mike Hanley of GitHub on the Log4j Vulnerability

2022-01-19 21:47:30

Metasploit Framework 6.4 Released

2024-03-25 13:33:28

impervablog

Continuing to Stay Ahead of CVE-2021-44228: Addressing Your Top Questions

2021-12-14 22:55:49

Analytics Are Essential for Effective Database Security

2022-01-13 15:23:02

kaspersky

KLA12390 RCE vulnerability in Apache Log4j

2021-12-10 00:00:00

KLA12392 RCE vulnerability in Microsoft Azure

2021-12-16 00:00:00

KLA12395 RCE vulnerability in Microsoft SQL Server

2021-12-16 00:00:00

fedora

[SECURITY] Fedora 34 Update: log4j-2.16.0-1.fc34

2021-12-22 01:14:26

qualysblog

Log4Shell – Follow This Multi-Layered Approach for Detection and Remediation

2021-12-28 18:00:00

Detect Exploitation Attempts With Qualys XDR (Beta)

2021-12-14 23:55:43

Put SecOps in the Driver’s Seat with Custom Assessment and Remediation

2022-05-20 13:00:00

hackerone

U.S. Dept Of Defense: ███ ████████ running a vulnerable log4j

2021-12-31 00:55:49

U.S. Dept Of Defense: ██████████ running a vulnerable log4j

2021-12-11 00:16:38

Acronis: [CVE-2021-44228] nps.acronis.com is vulnerable to the recent log4shell 0-day

2021-12-13 23:42:16

cisa_kev

Apache Log4j2 Remote Code Execution Vulnerability

2021-12-10 00:00:00

hivepro

Iranian hackers leveraged Log4Shell to penetrate US federal agency

2022-11-17 12:28:57

packetstorm

Intel Data Center Manager 5.1 Local Privilege Escalation

2022-12-09 00:00:00

MobileIron Log4Shell Remote Command Execution

2022-08-03 00:00:00

Log4Shell HTTP Header Injection

2022-01-12 00:00:00

msrc

CVE-2021-44228 Apache Log4j 2 に対するマイクロソフトの対応

2021-12-12 08:00:00

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2

2021-12-12 05:28:18

trellix

Log4J and The Memory That Knew Too Much

2022-01-19 00:00:00

mssecure

MERCURY and DEV-1084: Destructive attack on hybrid environment

2023-04-07 16:00:00

talosblog

How CVSS 4.0 changes (or doesn’t) the way we see vulnerability severity

2024-02-21 13:54:48

openvas

openSUSE: Security Advisory for logback (openSUSE-SU-2021:1613-1)

2022-02-01 00:00:00

Debian: Security Advisory (DLA-2842-1)

2021-12-13 00:00:00

wallarmlab

Update on Log4Shell (CVE-2021-44228)

2021-12-10 20:22:36

5 things you need to know about Log4Shell (CVE-2021-44228)

2021-12-10 20:40:07

trendmicroblog

Patch Now: Apache Log4j Vulnerability Called Log4Shell Actively Exploited

2021-12-13 00:00:00

amd

AMD Response to Log4j (Log4Shell) Vulnerability

2021-12-15 00:00:00

veracode

Remote Code Execution (RCE)

2021-12-10 15:09:45

cisa

Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems

2022-06-23 00:00:00

CISA Issues ED 22-02 Directing Federal Agencies to Mitigate Apache Log4j Vulnerabilities

2021-12-17 00:00:00

cve

CVE-2021-44228

2021-12-10 10:15:09

osv

Critical vulnerability in log4j may affect generated PEAR projects

2021-12-16 21:01:51

debiancve

CVE-2021-44228

2021-12-10 10:15:09

thn

Extremely Critical Log4J Vulnerability Leaves Much of the Internet at Risk

2021-12-11 04:18:00

vmware

VMware Response to Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)

2021-12-10 00:00:00

ubuntu

Apache Log4j 2 vulnerability

2021-12-14 00:00:00

zdt

Apache Log4j 2 - Remote Code Execution Exploit

2021-12-14 00:00:00

mscve

Apache Log4j Remote Code Execution Vulnerability

2021-12-16 08:00:00

malwarebytes

CISA Log4Shell warning: Patch VMware Horizon installations immediately

2022-06-27 09:54:58

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.976 High

EPSS

Percentile

100.0%

JSON

Related for H1:1427589