Thanks Tills, just to confirm, I still do not see any list of available plugins for this vulnerability. However, the banner on this site may be a bit misleading as it says to check "this list of plugins" which still returns no results.

Also, any ETA on when Tenable will have the plugin ready?

Same issue here, Keith, I'm confused why there's not a plugin for unauthenticated scans since that's exactly how attackers are scanning for vulnerable hosts...

Just forced plugin updates and not seeing them when I search either.

Ahhh, a saint among men!

I see the plugins now, much appreciated. To save another case, could you post what support tells you? That'll remove confusion for those who see this feed...(And me, selfishly) :-)

Confirmed with TSE, plugin 155998 "Apache Log4j Message Lookup Substitution RCE (Log4Shell) (Direct Check)" is a remote type. The other four (155999-156002) are local.

You are the man, appreciate the follow-up. Godspeed to everyone fighting the good fight! ;-)

Hi , This plugin id = 155998 doesn't show up on Tenable.io .I am able to see other plugin ids but specifically 155998  this one doesn't up on the filters. Could you please help me?

There are no plugins related with log4shell visible on filter plugin on Scan templates in Tenable.io , so how can we expect to be sure that plugins are already loaded ?

I run log4shell scan over assets that have the issue but are not been detected. A regular advanced network scan (with credentials) neither is detecting?. I am trying without credential. But I doubt that I will work, cause I could not see plugins on scan template. Is the someone from Tenable Support that could say what is happening?