Vulnerability & Exploit Database

Gentoo Linux: CVE-2021-45046: Ubiquiti UniFi: remote code execution via bundled log4j

Ubuntu: (Multiple Advisories) (CVE-2021-4104): Apache Log4j 1.2 vulnerability

Apache Log4j Log4Shell JndiLookup class mitigation in place

Apache Solr: CVE-2021-44228: Apache Solr affected by Apache Log4J CVE-2021-44228

FreeBSD: (Multiple Advisories) (CVE-2021-44228): serviio -- affected by log4j vulnerability

IBM WebSphere Application Server: CVE-2021-44228: Vulnerability in Apache Log4j affects WebSphere Application Server (CVE-2021-44228)

SUSE: CVE-2021-44228: SUSE Linux Security Advisory

Amazon Linux AMI: CVE-2021-44228: Security patch for java-1.8.0-openjdk, java-1.7.0-openjdk, java-1.6.0-openjdk (ALAS-2021-1553)

Ubuntu: (Multiple Advisories) (CVE-2021-44228): Apache Log4j 2 vulnerability

Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832

VMware vCenter Server: CVE-2021-44228 (VMSA-2021-0028)

VMware Horizon Connection Server: CVE-2021-44228: Log4j CVE-2021-44228 in VMware Horizon (on-premises)

Debian: CVE-2021-44228: apache-log4j2 -- security update

VMware Horizon Agent: CVE-2021-44228: Log4j CVE-2021-44228 in VMware Horizon (on-premises)

Amazon Linux AMI 2: CVE-2021-44228: Security patch for java-1.7.0-openjdk, java-1.8.0-openjdk, java-11-amazon-corretto, aws-kinesis-agent, java-1.8.0-amazon-corretto, java-11-openjdk, java-17-amazon-corretto (Multiple Advisories)

Log4Shell HTTP Header Injection

Log4Shell HTTP Scanner

Apache Log4j Core: CVE-2021-44228: JNDI support has not restricted what names could be resolved allowing remote code execution