Forum Discussion

3 years ago

Apache Log4j on Windows Detection Settings Adjustment...

Apache Log4j on Windows Detection Settings Adjustment Summary Prior to this update and out of an abundance of caution, the manifest and properties file inspection of Java archive files was enabled ...

Tenable Research

jones_bryan

Connect Contributor III

3 years ago

@Greg Betz Thanks, for verifying. I know this High light is for Windows however, is there any way to get details on what changed on the Linux side? We saw a significant drop in vulnerability detections between 4/26-4/28. From the Nessus plugin feed on 4/25 it looks like there was an update to plugin 156000. Was there a highlight I missed? Specifically we are seeing it impact detections of log4j 1.x for unsupported version.

jones_bryan
Connect Contributor III
3 years ago
I see now the plugin for 156860/Apache Log4j 1.x Multiple Vulnerabilities was changed from a severity of Critical to High it looks like.

Forum Discussion

Apache Log4j on Windows Detection Settings Adjustment...

Recent Discussions

Improved Linux RPM Package Handling

Plugin output for language library enumeration

Research Release Highlight - Potential Vulnerabilities

Improvement to Printer OS Fingerprinting

Tenable Post-Quantum Cryptography Inventory Support

Americas

Europe

Asia / Australia