CVE-2021-4104

Published Dec 14, 2021
Last updated a year ago
CVSS high 7.5
Overview

Description: JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. The attacker can provide TopicBindingName and TopicConnectionFactoryBindingName configurations causing JMSAppender to perform JNDI requests that result in remote code execution in a similar fashion to CVE-2021-44228. Note this issue only affects Log4j 1.2 when specifically configured to use JMSAppender, which is not the default. Apache Log4j 1.2 reached end of life in August 2015. Users should upgrade to Log4j 2 as it addresses numerous other issues from the previous versions.
Source: security@apache.org
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 5.9
Exploitability score: 1.6
Vector string: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 6
Impact score: 6.4
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-502
security@apache.org: CWE-502
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:log4j:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2954BDA9-F03D-44AC-A9EA-3E89036EEFA8"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:codeready_studio:12.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BAF877F-B8D5-4313-AC5C-26BB82006B30"
          },
          {
            "criteria": "cpe:2.3:a:redhat:integration_camel_k:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B87C8AD3-8878-4546-86C2-BF411876648C"
          },
          {
            "criteria": "cpe:2.3:a:redhat:integration_camel_quarkus:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F039C746-2001-4EE5-835F-49607A94F12B"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_a-mq:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C4404A-CFB7-4B47-9487-F998825C31CA"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_a-mq:7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A58966CB-36AF-4E64-AB39-BE3A0753E155"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_a-mq_streaming:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C7257E5-B4A7-4299-8FE1-A94121E47528"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_data_grid:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD354E32-A8B0-484C-B4C6-9FBCD3430D2D"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_data_virtualization:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CDDAFDB-E67A-4795-B2C4-C2D31734ABC8"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B142ACCC-F7A9-4A3B-BE60-0D6691D5058D"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88BF3B2C-B121-483A-AEF2-8082F6DA5310"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_fuse:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A305F012-544E-4245-9D69-1C8CD37748B1"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_fuse:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B40CCE4F-EA2C-453D-BB76-6388767E5C6D"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_fuse_service_works:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B78438D-1321-4BF4-AEB1-DAF60D589530"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_operations_network:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C077D692-150C-4AE9-8C0B-7A3EA5EB1100"
          },
          {
            "criteria": "cpe:2.3:a:redhat:jboss_web_server:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54EB07A0-FB38-4F17-9C8D-DB629967F07B"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_application_runtimes:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A33441B3-B301-426C-A976-08CE5FE72EFB"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B62E762-2878-455A-93C9-A5DB430D7BB5"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14CF53D2-B585-4EA5-8F18-21BC9ECBB4B6"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91B493F0-5542-49F7-AAAE-E6CA6E468D7B"
          },
          {
            "criteria": "cpe:2.3:a:redhat:process_automation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20A6B40D-F991-4712-8E30-5FE008505CB7"
          },
          {
            "criteria": "cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EFEC7CA-8DDA-48A6-A7B6-1F1D14792890"
          },
          {
            "criteria": "cpe:2.3:a:redhat:software_collections:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "749804DA-4B27-492A-9ABA-6BB562A6B3AC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:advanced_supply_chain_planning:12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A62E2A25-1AD7-4B4B-9D1B-F0DEA4550557"
          },
          {
            "criteria": "cpe:2.3:a:oracle:advanced_supply_chain_planning:12.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0331158C-BBE0-42DB-8180-EB1FCD290567"
          },
          {
            "criteria": "cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B602F9E8-1580-436C-A26D-6E6F8121A583"
          },
          {
            "criteria": "cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77C3DD16-1D81-40E1-B312-50FBD275507C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81DAC8C0-D342-44B5-9432-6B88D389584F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E869C417-C0E6-4FC3-B406-45598A1D1906"
          },
          {
            "criteria": "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFEFE2C0-7B98-44F9-B3AD-D6EC607E90DA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C68536CA-C7E2-4228-A6B8-F0DB6A9D29EC"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1214FDF-357A-4BB9-BADE-50FB2BD16D10"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B21E6EEF-2AB7-4E96-B092-1F49D11B4175"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_offline_mediation_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28CDCE04-B074-4D7A-B6E4-48193458C9A0",
            "versionEndExcluding": "12.0.0.4.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5933FEA2-B79E-4EE7-B821-54D676B45734"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D299528-8EF0-49AF-9BDE-4B6C6B1DA36C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17A91FD9-9F77-42D3-A4D9-48BC7568ADE1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7637F8B-15F1-42E2-BE18-E1FF7C66587D"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E43D793A-7756-4D58-A8ED-72DC4EC9CEA7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite_cloud_manager_and_cloud_backup_module:2.2.1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6ED0EE39-C080-4E75-AE0F-3859B57EF851"
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783"
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E8758C8-87D3-450A-878B-86CE8C9FC140"
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "054B56E0-F11B-4939-B7E1-E722C67A041A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.7.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "250A493C-E052-4978-ABBE-786DC8038448"
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.8.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E2B771B-230A-4811-94D7-065C2722E428"
          },
          {
            "criteria": "cpe:2.3:a:oracle:fusion_middleware_common_libraries_and_tools:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F17531CB-DE8A-4ACD-93A0-6A5A8481D51B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:goldengate:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "507E7AEE-C2FC-4EED-B0F7-5E41642C0BF7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_data_repository:8.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66C673C4-A825-46C0-816B-103E1C058D03"
          },
          {
            "criteria": "cpe:2.3:a:oracle:hyperion_data_relationship_management:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8E7FBA9-0FFF-4C86-B151-28C17A142E0B",
            "versionEndExcluding": "11.2.8.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:hyperion_infrastructure_technology:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55BBCD48-BCC6-4E19-A4CE-970E524B9FF4",
            "versionEndExcluding": "11.2.8.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:identity_management_suite:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1489DDA7-EDBE-404C-B48D-F0B52B741708"
          },
          {
            "criteria": "cpe:2.3:a:oracle:identity_management_suite:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "535BC19C-21A1-48E3-8CC0-B276BA5D494E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "228DA523-4D6D-48C5-BDB0-DB1A60F23F8B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0EBAC6D-D0CE-42A1-AEA0-2D50C8035747",
            "versionEndIncluding": "8.0.29"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_allocation:14.1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51E83F05-B691-4450-BCA9-32209AEC4F6A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_allocation:15.0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "288235F9-2F9E-469A-BE14-9089D0782875"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_allocation:16.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6672F9C1-DA04-47F1-B699-C171511ACE38"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_allocation:19.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11E57939-A543-44F7-942A-88690E39EABA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_extract_transform_and_load:13.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30501D23-5044-477A-8DC3-7610126AEFD7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:stream_analytics:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B45A731-11D1-433B-B202-9C8D67C609F9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:timesten_grid:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "900D9DBF-8071-4CE5-A67A-9E0C00D04B87"
          },
          {
            "criteria": "cpe:2.3:a:oracle:tuxedo:12.2.2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB7D0A30-3986-49AB-B7F3-DAE0024504BA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3ED272C-A545-4F8C-86C0-2736B3F2DCAF"
          },
          {
            "criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5B4C338-11E1-4235-9D5A-960B2711AC39"
          },
          {
            "criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C93F84E-9680-44EF-8656-D27440B51698"
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F14A818F-AA16-4438-A3E4-E64C9287AC66"
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418"
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04BCDC24-4A21-473C-8733-0D9CFB38A752"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
