Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM4AF3F2925FA2FAC4247303F748E1EABFA2DFEF4045F7C3DA1E06B8C833F40639
HistoryJan 07, 2022 - 5:09 p.m.

Security Bulletin: Apache Log4j vulnerability affects IBM Sterling External Authentication Server (CVE-2021-44832)

2022-01-0717:09:05
www.ibm.com
26

0.976 High

EPSS

Percentile

100.0%

JSON

Summary

IBM Sterling External Authentication Server is vulnerable to an arbitrary code execution due to Apache Log4j, which is used for logging (CVE-2021-44832). The fix includes Apache Log4j 2.17.1.

Vulnerability Details

CVEID:CVE-2021-44832
**DESCRIPTION:**Apache Log4j could allow a remote attacker with permission to modify the logging configuration file to execute arbitrary code on the system. By constructing a malicious configuration using a JDBC Appender with a data source referencing a JNDI URI , an attacker could exploit this vulnerability to execute remote code.
CVSS Base score: 6.6
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/216189 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Sterling External Authentication Server 6.0.3
IBM Sterling External Authentication Server 6.0.2

Remediation/Fixes

IBM strongly recommends addressing the vulnerability now.

Product VRMF iFix Remediation
IBM Sterling External Authentication Server 6.0.3 iFix 01 Plus Build 141 Fix Central - 6030
IBM Sterling External Authentication Server 6.0.2 iFix 04 Plus Build 214 Fix Central - 6020

The Fix Central - 6030 link points to a fix called SSP-SEAS-log4j-2.17.1-jars-for-CVE-2021-44832 which supplies the jars and instructions to replace them. This fix remediates CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832.

Workarounds and Mitigations

None

Related

redhat 6
github 2
osv 1
githubexploit 7
ibm 154
paloalto 1
citrix 1
nessus 4
cisco 1
rapid7blog 1
arista 1
fedora 2
avleonov 1
securelist 1
qualysblog 2
cisa 1
threatpost 2
nvidia 1
thn 3
openvas 5
ics 1
checkpoint_security 1
redhat
redhat
(RHSA-2022:0083) Moderate: Red Hat build of Eclipse Vert.x 4.1.8 security update
2022-01-20 12:09:30
(RHSA-2022:0203) Critical: Red Hat Fuse 7.8-7.10 security update
2022-01-20 09:22:41
(RHSA-2022:0222) Moderate: Red Hat Integration Camel Extensions for Quarkus 2.2 security update
2022-01-20 18:50:57
github
github
GitHub’s response to Log4j vulnerability CVE-2021-44228
2021-12-13 19:06:34
Security Advisory for "Log4Shell"
2022-01-21 23:25:04
osv
osv
Security Advisory for "Log4Shell"
2022-01-21 23:25:04
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-14 15:13:06
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-13 07:24:02
Exploit for Deserialization of Untrusted Data in Apache Log4J
2021-12-13 07:24:02
ibm
ibm
Security Bulletin: IBM MQ Blockchain bridge dependencies are vulnerable to issues in Apache Log4j (CVE-2021-45105 & CVE-2021-44832)
2022-01-07 18:00:41
Security Bulletin: Tivoli Netcool/Omnibus installation contains vulnerable Apache Log4j code (CVE-2021-44832, CVE-2021-45046, CVE-2021-45105)
2022-02-01 11:47:35
Security Bulletin: IBM Netcool Agile Service Manager is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, CVE-2021-45105)
2022-01-21 17:03:35
paloalto
paloalto
Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832
2021-12-10 21:45:00
citrix
citrix
Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832.
2021-12-11 17:15:50
nessus
nessus
Amazon Linux 2022 : log4j (ALAS2022-2022-225)
2022-12-09 00:00:00
Oracle Primavera Gateway (Jan 2022 CPU)
2022-01-20 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Apache Log4j 2 vulnerabilities (USN-5222-1)
2023-05-25 00:00:00
cisco
cisco
Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021
2021-12-10 18:45:00
rapid7blog
rapid7blog
Widespread Exploitation of Critical Remote Code Execution in Apache Log4j
2021-12-10 15:30:00
arista
arista
Security Advisory 0070
2022-05-20 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: log4j-2.17.0-1.fc34
2021-12-27 00:56:30
[SECURITY] Fedora 35 Update: log4j-2.17.0-1.fc35
2021-12-27 00:41:40
avleonov
avleonov
Log4j “Log4Shell” RCE explained (CVE-2021-44228)
2021-12-26 22:07:17
securelist
securelist
Answering Log4Shell-related questions
2021-12-20 15:45:30
qualysblog
qualysblog
How to Discover Log4Shell Vulnerabilities in Running Containers & Images
2021-12-27 19:39:34
Is Your Web Application Exploitable By Log4Shell Vulnerability?
2021-12-15 17:06:36
cisa
cisa
Mitigating Log4Shell and Other Log4j-Related Vulnerabilities
2021-12-22 00:00:00
threatpost
threatpost
Third Log4J Bug Can Trigger DoS; Apache Issues Patch
2021-12-20 16:01:57
Microsoft Sees Rampant Log4j Exploit Attempts, Testing
2022-01-04 22:49:54
nvidia
nvidia
Security Notice: NVIDIA Response to Log4j Vulnerabilities - December 2021
2021-12-13 00:00:00
thn
thn
Apache Issues 3rd Patch to Fix New High-Severity Log4j Vulnerability
2021-12-18 10:09:00
New Apache Log4j Update Released to Patch Newly Discovered Vulnerability
2021-12-29 04:59:00
Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities
2022-01-05 05:12:00
openvas
openvas
Elastic Logstash Multiple Log4j Vulnerabilities (Dec 2021)
2021-12-20 00:00:00
Elastic Elasticsearch Multiple Log4j Vulnerabilities (Dec 2021)
2021-12-20 00:00:00
Fedora: Security Advisory for log4j (FEDORA-2021-5c9d12a93e)
2021-12-27 00:00:00
ics
ics
Mitigating Log4Shell and Other Log4j-Related Vulnerabilities
2021-12-23 12:00:00
checkpoint_security
checkpoint_security
Check Point's response to Apache Log4j Remote Code Execution
2021-12-10 11:28:03

0.976 High

EPSS

Percentile

100.0%

JSON
Related for 4AF3F2925FA2FAC4247303F748E1EABFA2DFEF4045F7C3DA1E06B8C833F40639
redhat6github2osv1githubexploit7ibm154paloalto1citrix1nessus4cisco1rapid7blog1arista1fedora2avleonov1securelist1qualysblog2cisa1threatpost2nvidia1thn3openvas5ics1checkpoint_security1