CVE-2021-45046

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default.

Published: Dec 14, 2021
Updated: Jun 27, 2023
CVE: CVE-2021-45046
GHSA: GHSA-7rjr-3q55-vv33
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9
AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Affected Software
References

Software	From	Fixed in
apache / log4j	2.0-rc1	2.0-rc1.x
apache / log4j	2.0-beta9	2.0-beta9.x
apache / log4j	2.0-rc2	2.0-rc2.x
apache / log4j	2.0	2.0.x
apache / log4j	2.0.1	2.12.2
apache / log4j	2.13.0	2.16.0
siemens / sppa-t3000_ses3000_firmware	-	-
siemens / logo!_soft_comfort	-	-
siemens / spectrum_power_4	4.70-sp7	4.70-sp7.x
siemens / spectrum_power_4	4.70	4.70.x
siemens / spectrum_power_4	-	4.70
siemens / siveillance_control_pro	-	-
siemens / energyip_prepay	3.7	3.7.x
siemens / energyip_prepay	3.8	3.8.x
siemens / spectrum_power_4	4.70-sp8	4.70-sp8.x
siemens / siveillance_identity	1.6	1.6.x
siemens / siveillance_identity	1.5	1.5.x
siemens / siveillance_command	-	4.16.2.1.x
siemens / sipass_integrated	2.85	2.85.x
siemens / sipass_integrated	2.80	2.80.x
siemens / head-end_system_universal_device_integration_system	-	-
siemens / gma-manager	-	8.6.2j-398
siemens / energyip	8.5	8.5.x
siemens / energyip	8.6	8.6.x
siemens / energyip	8.7	8.7.x
siemens / energyip	9.0	9.0.x
siemens / energy_engage	3.1	3.1.x
siemens / e-car_operation_center	-	2021-12-13
siemens / desigo_cc_info_center	5.0	5.0.x
siemens / desigo_cc_info_center	5.1	5.1.x
siemens / desigo_cc_advanced_reports	4.1	4.1.x
siemens / desigo_cc_advanced_reports	4.2	4.2.x
siemens / desigo_cc_advanced_reports	5.0	5.0.x
siemens / desigo_cc_advanced_reports	5.1	5.1.x
siemens / desigo_cc_advanced_reports	4.0	4.0.x
siemens / comos	-	-
siemens / captial	2019.1-sp1912	2019.1-sp1912.x
siemens / navigator	-	2021-12-13
siemens / vesys	2019.1-sp1912	2019.1-sp1912.x
siemens / vesys	2019.1	2019.1.x
siemens / vesys	-	2019.1
siemens / teamcenter	-	-
siemens / spectrum_power_7	2.30-sp2	2.30-sp2.x
siemens / spectrum_power_7	2.30	2.30.x
siemens / spectrum_power_7	-	2.30
siemens / solid_edge_harness_design	2020-sp2002	2020-sp2002.x
siemens / solid_edge_harness_design	2020	2020.x
siemens / solid_edge_harness_design	-	2020
siemens / captial	2019.1	2019.1.x
siemens / solid_edge_cam_pro	-	-
siemens / siveillance_viewpoint	-	-
siemens / siveillance_vantage	-	-
siemens / siguard_dsa	4.3	4.3.x
siemens / siguard_dsa	4.4	4.4.x
siemens / siguard_dsa	4.2	4.2.x
siemens / sentron_powermanager	4.2	4.2.x
siemens / sentron_powermanager	4.1	4.1.x
siemens / operation_scheduler	-	1.1.3.x
siemens / nx	-	-
siemens / opcenter_intelligence	-	3.2.x
siemens / mindsphere	-	2021-12-11
siemens / mendix	-	-
siemens / industrial_edge_management_hub	-	2021-12-13
siemens / industrial_edge_management	-	-
siemens / captial	-	2019.1
siemens / tracealertserverplus	-	-
debian / debian_linux	10.0	10.0.x
debian / debian_linux	11.0	11.0.x
sonicwall / email_security	-	10.0.12
fedoraproject / fedora	34	34.x
fedoraproject / fedora	35	35.x
siemens / 6bk1602-0aa12-0tp0_firmware	-	2.7.0
siemens / 6bk1602-0aa22-0tp0_firmware	-	2.7.0
siemens / 6bk1602-0aa32-0tp0_firmware	-	2.7.0
siemens / 6bk1602-0aa42-0tp0_firmware	-	2.7.0
siemens / 6bk1602-0aa52-0tp0_firmware	-	2.7.0
org.apache.logging.log4j / log4j-core	2.13.0	2.16.0
org.apache.logging.log4j / log4j-core	-	2.12.2

Vulnerability Database

289,599

CVE-2021-45046