ALAS2-2022-1739 — Vulnetix

ALAS2-2022-1739 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	log4j

Exploit Intelligence

CVE-2017-5645 - Apache Log4j RCE due Insecure Deserialization (github-poc-repo)
Environment for CVE_2019_17571 (github-poc-repo)
cuijiung/log4j-CVE-2021-4104 (github-poc-repo)
Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint. (github-poc-repo)
cuijiung/log4j-CVE-2021-4104 (github-poc)
log4j 1.x RCE Poc -- CVE-2021-4104 (github-poc)
Environment for CVE_2019_17571 (github-poc)
Apache Log4j 1.2.X存在反序列化远程代码执行漏洞 (github-poc)
Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint. (github-poc)
CVE-2017-5645 - Apache Log4j RCE due Insecure Deserialization (github-poc)

…and 3 more exploits

Timeline

Jan 20, 2022 CVE Published

References

ALAS2-2022-1739: log4j (medium) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›