In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HApache Log4j
APPApache2.0 – 2.8.2 (bez)Netapp Oncommand Api Services
APPNetappwszystkie wersjeNetapp Oncommand Insight
APPNetappwszystkie wersjeNetapp Oncommand Workflow Automation
APPNetappwszystkie wersjeNetapp Service Level Manager
APPNetappwszystkie wersjeNetapp Snapcenter
APPNetappwszystkie wersjeNetapp Storage Automation Store
APPNetappwszystkie wersjeOracle Api Gateway
APPOracle11.1.2.4.0Oracle Application Testing Suite
APPOracle13.3.0.1Oracle Autovue Vuelink Integration
APPOracle21.0.021.0.1Oracle Banking Platform
APPOracle2.6.02.6.12.6.2Oracle Bi Publisher
APPOracle11.1.1.7.011.1.1.9.012.2.1.3.012.2.1.4.0Oracle Communications Converged Application Server Service Controller
APPOracle6.1Oracle Communications Instant Messaging Server
APPOracle10.0.1.3.0Oracle Communications Interactive Session Recorder
APPOracle6.0 – 6.2Oracle Communications Messaging Server
APPOracle< 8.0.2Oracle Communications Network Integrity
APPOracle7.3.2 – 7.3.6Oracle Communications Online Mediation Controller
APPOracle6.1Oracle Communications Pricing Design Center
APPOracle11.112.0Oracle Communications Service Broker
APPOracle6.0Oracle Communications Webrtc Session Controller
APPOracle< 7.2Oracle Configuration Manager
APPOracle12.1.2.0.212.1.2.0.5Oracle Endeca Information Discovery Studio
APPOracle3.2.0Oracle Enterprise Data Quality
APPOracle12.2.1.3.0Oracle Enterprise Manager Base Platform
APPOracle12.1.0.513.2.0.0Oracle Enterprise Manager For Fusion Middleware
APPOracle12.1.0.513.2.0.0Oracle Enterprise Manager For MySQL Database
APPOracle≤ 13.2.2.0.0Oracle Enterprise Manager For Oracle Database
APPOracle12.1.0.813.2.2Oracle Enterprise Manager For Peoplesoft
APPOracle13.1.1.113.2.1.1Oracle Financial Services Analytical Applications Infrastructure
APPOracle8.0.0.0.0 – 8.0.7.0.07.3.3.0.0 – 7.3.3.0.2
Powiązane podatności
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionalit...
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) ...
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-defau...
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features u...