CVE-2021-44228

10.12.2021, 10:15

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.

Expression Language Injection

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
apache	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	10 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 99%

Vendor	Product	Version
siemens	6bk1602-0aa12-0tp0_firmware	𝑥 < 2.7.0
siemens	6bk1602-0aa22-0tp0_firmware	𝑥 < 2.7.0
siemens	6bk1602-0aa32-0tp0_firmware	𝑥 < 2.7.0
siemens	6bk1602-0aa42-0tp0_firmware	𝑥 < 2.7.0
siemens	6bk1602-0aa52-0tp0_firmware	𝑥 < 2.7.0
apache	log4j	2.0.1 ≤ 𝑥 < 2.3.1
apache	log4j	2.4.0 ≤ 𝑥 < 2.12.2
apache	log4j	2.13.0 ≤ 𝑥 < 2.15.0
apache	log4j	2.0
apache	log4j	2.0:beta9
apache	log4j	2.0:rc1
apache	log4j	2.0:rc2
siemens	sppa-t3000_ses3000_firmware	*
siemens	capital	𝑥 < 2019.1
siemens	capital	2019.1
siemens	capital	2019.1:sp1912
siemens	comos	𝑥 < 10.4.2
siemens	desigo_cc_advanced_reports	3.0
siemens	desigo_cc_advanced_reports	4.0
siemens	desigo_cc_advanced_reports	4.1
siemens	desigo_cc_advanced_reports	4.2
siemens	desigo_cc_advanced_reports	5.0
siemens	desigo_cc_advanced_reports	5.1
siemens	desigo_cc_info_center	5.0
siemens	desigo_cc_info_center	5.1
siemens	e-car_operation_center	𝑥 < 2021-12-13
siemens	energy_engage	3.1
siemens	energyip	8.5
siemens	energyip	8.6
siemens	energyip	8.7
siemens	energyip	9.0
siemens	energyip_prepay	𝑥 < 3.8.0.12
siemens	gma-manager	𝑥 < 8.6.2j-398
siemens	head-end_system_universal_device_integration_system	*
siemens	industrial_edge_management	*
siemens	industrial_edge_management_hub	𝑥 < 2021-12-13
siemens	logo\!_soft_comfort	*
siemens	mendix	*
siemens	mindsphere	𝑥 < 2021-12-16
siemens	navigator	𝑥 < 2021-12-13
siemens	nx	*
siemens	opcenter_intelligence	3.2 ≤ 𝑥 < 3.5
siemens	operation_scheduler	𝑥 ≤ 1.1.3
siemens	sentron_powermanager	4.1
siemens	sentron_powermanager	4.2
siemens	siguard_dsa	4.2 ≤ 𝑥 < 4.4.1
siemens	sipass_integrated	2.80
siemens	sipass_integrated	2.85
siemens	siveillance_command	𝑥 ≤ 4.16.2.1
siemens	siveillance_control_pro	*
siemens	siveillance_identity	1.5
siemens	siveillance_identity	1.6
siemens	siveillance_vantage	*
siemens	siveillance_viewpoint	*
siemens	solid_edge_cam_pro	*
siemens	solid_edge_harness_design	𝑥 < 2020
siemens	spectrum_power_4	𝑥 < 4.70
siemens	spectrum_power_4	4.70
siemens	spectrum_power_4	4.70:sp7
siemens	spectrum_power_4	4.70:sp8
siemens	spectrum_power_7	𝑥 < 2.30
siemens	spectrum_power_7	2.30
siemens	spectrum_power_7	2.30
siemens	spectrum_power_7	2.30:sp2
siemens	teamcenter	*
siemens	vesys	𝑥 < 2019.1
siemens	vesys	2019.1
siemens	vesys	2019.1
siemens	vesys	2019.1:sp1912
siemens	vesys	2020.1
siemens	vesys	2021.1
siemens	xpedition_enterprise	-
siemens	xpedition_package_integrator	-
intel	computer_vision_annotation_tool	-
intel	datacenter_manager	𝑥 < 5.1
intel	genomics_kernel_library	-
intel	oneapi_sample_browser	-
intel	secure_device_onboard	-
intel	system_studio	-
debian	debian_linux	9.0
debian	debian_linux	10.0
debian	debian_linux	11.0
sonicwall	email_security	𝑥 < 10.0.13
netapp	active_iq_unified_manager	-
netapp	active_iq_unified_manager	-
netapp	active_iq_unified_manager	-
netapp	brocade_san_navigator	-
netapp	cloud_insights	-
netapp	cloud_manager	-
netapp	cloud_secure_agent	-
netapp	oncommand_insight	-
netapp	ontap_tools	-
netapp	snapcenter	-
netapp	solidfire_\&_hci_storage_node	-
netapp	solidfire_enterprise_sds	-
cisco	advanced_malware_protection_virtual_private_cloud_appliance	𝑥 < 3.5.4
cisco	automated_subsea_tuning	𝑥 < 2.1.0
cisco	broadworks	𝑥 < 2021.11_1.162
cisco	business_process_automation	𝑥 < 3.0.000.115
cisco	business_process_automation	3.1.000.000 ≤ 𝑥 < 3.1.000.044
cisco	business_process_automation	3.2.000.000 ≤ 𝑥 < 3.2.000.009
cisco	cloud_connect	𝑥 < 12.6\(1\)
cisco	cloudcenter	𝑥 < 4.10.0.16
cisco	cloudcenter_cost_optimizer	𝑥 < 5.5.2
cisco	cloudcenter_suite_admin	𝑥 < 5.3.1
cisco	cloudcenter_workload_manager	𝑥 < 5.5.2
cisco	common_services_platform_collector	𝑥 < 2.9.1.3
cisco	common_services_platform_collector	2.10.0 ≤ 𝑥 < 2.10.0.1
cisco	connected_mobile_experiences	-
cisco	contact_center_domain_manager	𝑥 < 12.5\(1\)
cisco	contact_center_management_portal	𝑥 < 12.5\(1\)
cisco	crosswork_data_gateway	𝑥 < 2.0.2
cisco	crosswork_data_gateway	3.0.0
cisco	crosswork_network_controller	𝑥 < 2.0.1
cisco	crosswork_network_controller	3.0.0
cisco	crosswork_optimization_engine	𝑥 < 2.0.1
cisco	crosswork_optimization_engine	3.0.0
cisco	crosswork_platform_infrastructure	𝑥 < 4.0.1
cisco	crosswork_platform_infrastructure	4.1.0
cisco	crosswork_zero_touch_provisioning	𝑥 < 2.0.1
cisco	crosswork_zero_touch_provisioning	3.0.0
cisco	customer_experience_cloud_agent	𝑥 < 1.12.1
cisco	cyber_vision_sensor_management_extension	𝑥 < 4.0.3
cisco	data_center_network_manager	𝑥 < 11.3\(1\)
cisco	data_center_network_manager	11.3\(1\)
cisco	dna_center	𝑥 < 2.1.2.8
cisco	dna_center	2.2.2.0 ≤ 𝑥 < 2.2.2.8
cisco	dna_center	2.2.3.0 ≤ 𝑥 < 2.2.3.4
cisco	dna_spaces\	𝑥 < 2.5
cisco	emergency_responder	𝑥 < 11.5\(4\)
cisco	enterprise_chat_and_email	𝑥 < 12.0\(1\)
cisco	evolved_programmable_network_manager	𝑥 ≤ 4.1.1
cisco	finesse	𝑥 < 12.6\(1\)
cisco	finesse	12.6\(1\)
cisco	fog_director	-
cisco	identity_services_engine	𝑥 < 2.4.0
cisco	identity_services_engine	2.4.0
cisco	integrated_management_controller_supervisor	𝑥 < 2.3.2.1
cisco	intersight_virtual_appliance	𝑥 < 1.0.9-361
cisco	iot_operations_dashboard	-
cisco	network_assurance_engine	𝑥 < 6.0.2
cisco	network_services_orchestrator	𝑥 < 5.3.5.1
cisco	network_services_orchestrator	5.4 ≤ 𝑥 < 5.4.5.2
cisco	network_services_orchestrator	5.5 ≤ 𝑥 < 5.5.4.1
cisco	network_services_orchestrator	5.6 ≤ 𝑥 < 5.6.3.1
cisco	nexus_dashboard	𝑥 < 2.1.2
cisco	nexus_insights	𝑥 < 6.0.2
cisco	optical_network_controller	𝑥 < 1.1.0
cisco	packaged_contact_center_enterprise	𝑥 < 11.6
cisco	packaged_contact_center_enterprise	11.6\(1\)
cisco	paging_server	𝑥 < 14.4.1
cisco	prime_service_catalog	𝑥 < 12.1
cisco	sd-wan_vmanage	𝑥 < 20.3.4.1
cisco	sd-wan_vmanage	20.4 ≤ 𝑥 < 20.4.2.1
cisco	sd-wan_vmanage	20.5 ≤ 𝑥 < 20.5.1.1
cisco	sd-wan_vmanage	20.6 ≤ 𝑥 < 20.6.2.1
cisco	smart_phy	𝑥 < 3.2.1
cisco	ucs_central	𝑥 < 2.0\(1p\)
cisco	ucs_director	𝑥 < 6.8.2.0
cisco	unified_communications_manager	𝑥 < 11.5\(1\)
cisco	unified_communications_manager	𝑥 < 11.5\(1\)
cisco	unified_communications_manager	11.5\(1\)
cisco	unified_communications_manager	11.5\(1\)
cisco	unified_communications_manager	11.5\(1\)
cisco	unified_communications_manager	11.5\(1\)su3
cisco	unified_communications_manager_im_and_presence_service	𝑥 < 11.5\(1\)
cisco	unified_communications_manager_im_and_presence_service	11.5\(1\)
cisco	unified_contact_center_enterprise	𝑥 < 11.6\(2\)
cisco	unified_contact_center_enterprise	11.6\(2\)
cisco	unified_contact_center_express	𝑥 < 12.5\(1\)
cisco	unified_customer_voice_portal	𝑥 < 11.6
cisco	unified_customer_voice_portal	11.6
cisco	unified_customer_voice_portal	12.0
cisco	unified_customer_voice_portal	12.5
cisco	unity_connection	𝑥 < 11.5\(1\)
cisco	video_surveillance_operations_manager	𝑥 < 7.14.4
cisco	virtual_topology_system	𝑥 < 2.6.7
cisco	virtualized_infrastructure_manager	𝑥 < 3.2.0
cisco	virtualized_infrastructure_manager	3.4.0 ≤ 𝑥 < 3.4.4
cisco	virtualized_voice_browser	𝑥 < 12.5\(1\)
cisco	wan_automation_engine	𝑥 < 7.3.0.2
cisco	webex_meetings_server	𝑥 < 3.0
cisco	webex_meetings_server	3.0
cisco	webex_meetings_server	3.0:maintenance_release1
cisco	webex_meetings_server	3.0:maintenance_release2
cisco	webex_meetings_server	3.0:maintenance_release3
cisco	webex_meetings_server	3.0:maintenance_release3
cisco	webex_meetings_server	3.0:maintenance_release3_security_patch4
cisco	webex_meetings_server	3.0:maintenance_release3_security_patch5
cisco	webex_meetings_server	3.0:maintenance_release3_service_pack_2
cisco	webex_meetings_server	3.0:maintenance_release3_service_pack_3
cisco	webex_meetings_server	3.0:maintenance_release4
cisco	webex_meetings_server	4.0
cisco	webex_meetings_server	4.0:maintenance_release1
cisco	webex_meetings_server	4.0:maintenance_release2
cisco	webex_meetings_server	4.0:maintenance_release3
cisco	workload_optimization_manager	𝑥 < 3.2.1
cisco	unified_intelligence_center	𝑥 < 12.6\(1\)
cisco	unified_sip_proxy	𝑥 < 10.2.1v2
cisco	unified_workforce_optimization	𝑥 < 11.5\(1\)
cisco	fxos	6.2.3
cisco	fxos	6.3.0
cisco	fxos	6.4.0
cisco	fxos	6.5.0
cisco	fxos	6.6.0
cisco	fxos	6.7.0
cisco	fxos	7.0.0
cisco	fxos	7.1.0
cisco	automated_subsea_tuning	02.01.00
cisco	broadworks	-
cisco	cloudcenter_suite	4.10\(0.15\)
cisco	cloudcenter_suite	5.3\(0\)
cisco	cloudcenter_suite	5.4\(1\)
cisco	cloudcenter_suite	5.5\(0\)
cisco	cloudcenter_suite	5.5\(1\)
cisco	common_services_platform_collector	002.009\(000.000\)
cisco	common_services_platform_collector	002.009\(000.001\)
cisco	common_services_platform_collector	002.009\(000.002\)
cisco	common_services_platform_collector	002.009\(001.000\)
cisco	common_services_platform_collector	002.009\(001.001\)
cisco	common_services_platform_collector	002.009\(001.002\)
cisco	common_services_platform_collector	002.010\(000.000\)
cisco	connected_analytics_for_network_deployment	006.004.000.003
cisco	connected_analytics_for_network_deployment	006.005.000.
cisco	connected_analytics_for_network_deployment	006.005.000.000
cisco	connected_analytics_for_network_deployment	007.000.001
cisco	connected_analytics_for_network_deployment	007.001.000
cisco	connected_analytics_for_network_deployment	007.002.000
cisco	connected_analytics_for_network_deployment	7.3
cisco	connected_analytics_for_network_deployment	007.003.000
cisco	connected_analytics_for_network_deployment	007.003.001.001
cisco	connected_analytics_for_network_deployment	007.003.003
cisco	connected_analytics_for_network_deployment	008.000.000
cisco	connected_analytics_for_network_deployment	008.000.000.000.004
cisco	crosswork_network_automation	-
cisco	crosswork_network_automation	2.0.0
cisco	crosswork_network_automation	3.0.0
cisco	crosswork_network_automation	4.1.0
cisco	crosswork_network_automation	4.1.1
cisco	cx_cloud_agent	001.012
cisco	cyber_vision	4.0.2
cisco	cyber_vision_sensor_management_extension	4.0.2
cisco	dna_center	2.2.2.8
cisco	dna_spaces	-
cisco	dna_spaces_connector	-
cisco	emergency_responder	11.5
cisco	emergency_responder	11.5\(4.65000.14\)
cisco	emergency_responder	11.5\(4.66000.14\)
cisco	enterprise_chat_and_email	12.0\(1\)
cisco	enterprise_chat_and_email	12.5\(1\)
cisco	enterprise_chat_and_email	12.6\(1\)
cisco	evolved_programmable_network_manager	3.0
cisco	evolved_programmable_network_manager	3.1
cisco	evolved_programmable_network_manager	4.0
cisco	evolved_programmable_network_manager	4.1
cisco	evolved_programmable_network_manager	5.0
cisco	evolved_programmable_network_manager	5.1
cisco	finesse	12.5\(1\):su1
cisco	finesse	12.5\(1\):su2
cisco	finesse	12.6\(1\)
cisco	finesse	12.6\(1\):es01
cisco	finesse	12.6\(1\):es02
cisco	finesse	12.6\(1\):es03
cisco	firepower_threat_defense	6.2.3
cisco	firepower_threat_defense	6.3.0
cisco	firepower_threat_defense	6.4.0
cisco	firepower_threat_defense	6.5.0
cisco	firepower_threat_defense	6.6.0
cisco	firepower_threat_defense	6.7.0
cisco	firepower_threat_defense	7.0.0
cisco	firepower_threat_defense	7.1.0
cisco	identity_services_engine	002.004\(000.914\)
cisco	identity_services_engine	002.006\(000.156\)
cisco	identity_services_engine	002.007\(000.356\)
cisco	identity_services_engine	003.000\(000.458\)
cisco	identity_services_engine	003.001\(000.518\)
cisco	identity_services_engine	003.002\(000.116\)
cisco	integrated_management_controller_supervisor	002.003\(002.000\)
cisco	integrated_management_controller_supervisor	2.3.2.0
cisco	intersight_virtual_appliance	1.0.9-343
cisco	mobility_services_engine	-
cisco	network_assurance_engine	6.0\(2.1912\)
cisco	network_dashboard_fabric_controller	11.0\(1\)
cisco	network_dashboard_fabric_controller	11.1\(1\)
cisco	network_dashboard_fabric_controller	11.2\(1\)
cisco	network_dashboard_fabric_controller	11.3\(1\)
cisco	network_dashboard_fabric_controller	11.4\(1\)
cisco	network_dashboard_fabric_controller	11.5\(1\)
cisco	network_dashboard_fabric_controller	11.5\(2\)
cisco	network_dashboard_fabric_controller	11.5\(3\)
cisco	network_insights_for_data_center	6.0\(2.1914\)
cisco	network_services_orchestrator	-
cisco	optical_network_controller	1.1
cisco	paging_server	8.3\(1\)
cisco	paging_server	8.4\(1\)
cisco	paging_server	8.5\(1\)
cisco	paging_server	9.0\(1\)
cisco	paging_server	9.0\(2\)
cisco	paging_server	9.1\(1\)
cisco	paging_server	12.5\(2\)
cisco	paging_server	14.0\(1\)
cisco	prime_service_catalog	12.1
cisco	sd-wan_vmanage	20.3
cisco	sd-wan_vmanage	20.4
cisco	sd-wan_vmanage	20.5
cisco	sd-wan_vmanage	20.6
cisco	sd-wan_vmanage	20.6.1
cisco	sd-wan_vmanage	20.7
cisco	sd-wan_vmanage	20.8
cisco	smart_phy	3.1.2
cisco	smart_phy	3.1.3
cisco	smart_phy	3.1.4
cisco	smart_phy	3.1.5
cisco	smart_phy	3.2.1
cisco	smart_phy	21.3
cisco	ucs_central_software	2.0
cisco	ucs_central_software	2.0\(1a\)
cisco	ucs_central_software	2.0\(1b\)
cisco	ucs_central_software	2.0\(1c\)
cisco	ucs_central_software	2.0\(1d\)
cisco	ucs_central_software	2.0\(1e\)
cisco	ucs_central_software	2.0\(1f\)
cisco	ucs_central_software	2.0\(1g\)
cisco	ucs_central_software	2.0\(1h\)
cisco	ucs_central_software	2.0\(1k\)
cisco	ucs_central_software	2.0\(1l\)
cisco	unified_communications_manager	11.5\(1.17900.52\)
cisco	unified_communications_manager	11.5\(1.18119.2\)
cisco	unified_communications_manager	11.5\(1.18900.97\)
cisco	unified_communications_manager	11.5\(1.21900.40\)
cisco	unified_communications_manager	11.5\(1.22900.28\)
cisco	unified_communications_manager_im_\&_presence_service	11.5\(1\)
cisco	unified_communications_manager_im_\&_presence_service	11.5\(1.22900.6\)
cisco	unified_computing_system	006.008\(001.000\)
cisco	unified_contact_center_enterprise	11.6\(2\)
cisco	unified_contact_center_enterprise	12.0\(1\)
cisco	unified_contact_center_enterprise	12.5\(1\)
cisco	unified_contact_center_enterprise	12.6\(1\)
cisco	unified_contact_center_enterprise	12.6\(2\)
cisco	unified_contact_center_express	12.5\(1\)
cisco	unified_contact_center_express	12.5\(1\):su1
cisco	unified_contact_center_express	12.6\(1\)
cisco	unified_contact_center_express	12.6\(2\)
cisco	unified_contact_center_management_portal	12.6\(1\)
cisco	unified_customer_voice_portal	11.6\(1\)
cisco	unified_customer_voice_portal	12.0\(1\)
cisco	unified_customer_voice_portal	12.5\(1\)
cisco	unified_customer_voice_portal	12.6\(1\)
cisco	unified_intelligence_center	12.6\(1\)
cisco	unified_intelligence_center	12.6\(1\):es01
cisco	unified_intelligence_center	12.6\(1\):es02
cisco	unified_intelligence_center	12.6\(2\)
cisco	unified_sip_proxy	010.000\(000\)
cisco	unified_sip_proxy	010.000\(001\)
cisco	unified_sip_proxy	010.002\(000\)
cisco	unified_sip_proxy	010.002\(001\)
cisco	unified_workforce_optimization	11.5\(1\):sr7
cisco	unity_connection	11.5
cisco	unity_connection	11.5\(1.10000.6\)
cisco	video_surveillance_manager	7.14\(1.26\)
cisco	video_surveillance_manager	7.14\(2.26\)
cisco	video_surveillance_manager	7.14\(3.025\)
cisco	video_surveillance_manager	7.14\(4.018\)
cisco	virtual_topology_system	2.6.6
cisco	wan_automation_engine	7.1.3
cisco	wan_automation_engine	7.2.1
cisco	wan_automation_engine	7.2.2
cisco	wan_automation_engine	7.2.3
cisco	wan_automation_engine	7.3
cisco	wan_automation_engine	7.4
cisco	wan_automation_engine	7.5
cisco	wan_automation_engine	7.6
cisco	webex_meetings_server	3.0
cisco	webex_meetings_server	4.0
snowsoftware	snow_commander	𝑥 < 8.10.0
snowsoftware	vm_access_proxy	𝑥 < 3.6
bentley	synchro	6.1 ≤ 𝑥 < 6.2.4.2
bentley	synchro_4d	𝑥 < 6.4.3.2
percussion	rhythmyx	𝑥 ≤ 7.3.2
apple	xcode	𝑥 < 13.3

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

apache-log4j1.2

bullseye	1.2.17-10+deb11u1 fixed
bookworm	1.2.17-11 fixed
sid	1.2.17-11 fixed
trixie	1.2.17-11 fixed

apache-log4j2

bullseye	2.17.1-1~deb11u1 fixed
bullseye (security)	2.17.0-1~deb11u1 fixed
bookworm	2.19.0-2 fixed
sid	2.19.0-2 fixed
trixie	2.19.0-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

apache-log4j2

jammy	not-affected
impish	Fixed 2.15.0-0.21.10.1 released
hirsute	Fixed 2.15.0-0.21.04.1 released
focal	Fixed 2.15.0-0.20.04.1 released
bionic	Fixed 2.10.0-2ubuntu0.1 released
xenial	Fixed 2.4-2ubuntu0.1~esm1 released
trusty	dne