Forum Discussion

4 years ago

Apache Log4j Detection Improvements Summary: Since CVE-2021-4

Apache Log4j Detection Improvements Summary: Since CVE-2021-44228 was first announced, Tenable has been working diligently on improving the local detections for Apache Log4j on Windows, Linux, and...

CVE

Tenable

jones_bryan

Connect Contributor

4 years ago

@Greg Betz appreciate the notification about the new plugins. Can you help me understand how to interpret the new plugin output for plugin 156001. I see now that it includes a "jndilookup.cass association" and says "found" or "not found". If it equals "found" does that mean it will still mark log4j vulnerabilities as vulnerable and if "not found" then the vulnerabilities will be marked as mitigated?

bjones2115

4 years ago

Or is the new output strictly informational and have no bearing on the log4j vulnerability plugins?

Forum Discussion

Apache Log4j Detection Improvements Summary: Since CVE-2021-4

Recent Discussions

Machine Learning SinFP Model Updates for OS Fingerprinting

New Plugin Family: UnionTech Local Security Checks

Fudo Security API v2 Compatibility

Improved Printer Fingerprinting

Include/Exclude Path and Tenable Utils Unzip added to Log4j Detection

Americas

Europe

Asia / Australia