Forum Discussion
Proof-of-Concept for Critical Apache Log4j Remote Code...
Thanks Tills, just to confirm, I still do not see any list of available plugins for this vulnerability. However, the banner on this site may be a bit misleading as it says to check "this list of plugins" which still returns no results.
Also, any ETA on when Tenable will have the plugin ready?
Hi Jeff,
The following plugins are available and in the plugins feed. If you have not already, please update your plugins and ensure the feed serial is 202112110647.
The plugin IDs are below:
155998 Apache Log4j Message Lookup Substitution RCE (Log4Shell) (Direct Check)
155999 Apache Log4j < 2.15.0 Remote Code Execution
156000 Apache Log4j Installed (Unix)
156001 Apache Log4j JAR Detection (Windows)
156002 Apache Log4j < 2.15.0 Remote Code Execution
We're working with our teams to ensure the plugin search page properly reflects these new plugins.
Plugins still aren't searchable.
I'm trying to figure out if any of them are "remote" type but three are encrypted. The other two have readable source code and confirmed as "local" type, meaning they only will detect for authenticated scans and are useless for detecting an externally-exploitable vulnerability.