Rewterz Threat Advisory – Log4J Vulnerability Exploited in the wild
December 12, 2021Rewterz Threat Advisory – CVE-2021-4038 – McAfee Network Security Manager
December 13, 2021Rewterz Threat Advisory – Log4J Vulnerability Exploited in the wild
December 12, 2021Rewterz Threat Advisory – CVE-2021-4038 – McAfee Network Security Manager
December 13, 2021Severity
Medium
Analysis Summary
CVE-2021-44228
Apache could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the Java logging library. By sending a specially-crafted string value, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Remote Code Execution
Indicators of Compromise
IP
- 167[.]71[.]13[.]196
- 167[.]99[.]164[.]201
- 165[.]232[.]80[.]166
Remediation
- Search for IOCs in your environment.
- Block all threat indicator at your respective controls.