Forum Discussion

4 years ago

CVE-2021-44228/CVE-2021-45046 Windows and Linux Mitigation...

CVE-2021-44228/CVE-2021-45046 Windows and Linux Mitigation Audits Summary: In some environments, customers who can’t patch their systems to protect against the Log4j vulnerabilities need a way...

CVE

Tenable

gabriel_nazer

4 years ago

Hi, thanks for sharing these Audit files. Is there any plan for realeasing similar files for CVE-2021-4104 (https://www.tenable.com/cve/CVE-2021-4104)?

Thanks in advance.

bmcsulla

4 years ago

I believe there is coverage for this in https://www.tenable.com/plugins/nessus/156103

gabriel_nazer
4 years ago
Hi, thanks for your response, but that plugin inform the version of Apache Log4j that can be affeted only if JMSAppender is configured, and I would like an audit file to check if JMSAppender is configured or not
"The version of Apache Log4j on the remote host is 1.2. It is, therefore, affected by a remote code execution vulnerability when specifically configured to use JMSAppender."

Forum Discussion

CVE-2021-44228/CVE-2021-45046 Windows and Linux Mitigation...

Recent Discussions

Disable Red Hat repository correlations and strictly use package version checks

Component Installs Require Paranoid Checks

Windows Patch Management Remediation Guidance

Improvements to Live Kernel Patching Detection

Ruby Gem Enumeration Detection Updates

Americas

Europe

Asia / Australia