CVE-2021-45046

 

Published at: - 14-12-2021 08:15

Last modified: - 25-07-2022 08:18

Total changes: - 12

Description

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, ${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

 

Verification logic

 

Reference

• [oss-security] 20211214 CVE-2021-45046: Apache Log4j2 Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack-Mailing List, Mitigation, Third Party Advisory
• https://logging.apache.org/log4j/2.x/security.html
• https://www.cve.org/CVERecord?id=CVE-2021-44228
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html
• 20211210 Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021-Third Party Advisory
• [oss-security] 20211215 Re: CVE-2021-45046: Apache Log4j2 Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack-Mailing List, Third Party Advisory
• https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf
• VU#930724-Third Party Advisory, US Government Resource
• https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf
• DSA-5022-Third Party Advisory
• https://www.oracle.com/security-alerts/alert-cve-2021-44228.html
• https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032
• [oss-security] 20211218 Re: CVE-2021-45046: Apache Log4j2 Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack-Mailing List, Third Party Advisory
• https://cert-portal.siemens.com/productcert/pdf/ssa-397453.pdf
• https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf
• FEDORA-2021-5c9d12a93e-Mailing List, Third Party Advisory
• FEDORA-2021-abbe24e41c-Mailing List, Third Party Advisory
• https://www.oracle.com/security-alerts/cpujan2022.html
• https://www.oracle.com/security-alerts/cpuapr2022.html
• N/A-

 

Keywords

NVD

 

CVE-2021-45046

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures