Real-time security intelligence — KEV, CVEs, exploits, threat actors and IOCs unified into one live view.

ZeroDayAttack — AppSec intelligence aggregator

6 results

For "Log4j2" across CVEs, vendor advisories, threat actors, IOCs, security research, and news.

Vulnerabilities

CVE-2021-45046Critical· 9.0KEVEXPLOIT22 h ago
Apache Log4j2 Deserialization of Untrusted Data Vulnerability
CVE-2021-44228Critical· 10.0KEVEXPLOIT22 h ago
Apache Log4j2 Remote Code Execution Vulnerability

Improper Input Validation and Injection in Apache Log4j2

Apache Log4j2 vulnerable to Improper Input Validation and Uncontrolled Recursion

Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

snyk
Log4j vulnerability explained: Prevent Log4Shell RCE by updating to version 2.17.1
A new critical vulnerability was disclosed for log4j, a very popular Java logging framework from the Apache foundation. All current versions of log4j2 up to 2.14.1 are vulnerable. You can remediate this vulnerability by updating to version
2021-12-10