Medium severity5.9NVD Advisory· Published Dec 18, 2021· Updated May 29, 2026
CVE-2021-45105
CVE-2021-45105
Description
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0, 2.12.3, and 2.3.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.logging.log4j:log4j-coreMaven | >= 2.4.0, < 2.12.3 | 2.12.3 |
org.apache.logging.log4j:log4j-coreMaven | >= 2.13.0, < 2.17.0 | 2.17.0 |
org.apache.logging.log4j:log4j-coreMaven | < 2.3.1 | 2.3.1 |
org.ops4j.pax.logging:pax-logging-log4j2Maven | >= 1.8.0, < 1.9.2 | 1.9.2 |
org.ops4j.pax.logging:pax-logging-log4j2Maven | >= 1.10.0, < 1.10.9 | 1.10.9 |
org.ops4j.pax.logging:pax-logging-log4j2Maven | >= 1.11.0, < 1.11.12 | 1.11.12 |
org.ops4j.pax.logging:pax-logging-log4j2Maven | >= 2.0.0, < 2.0.13 | 2.0.13 |
Affected products
205- cpe:2.3:a:netapp:cloud_manager:-:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:agile_plm_mcad_connector:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:autovue_for_agile_product_lifecycle_management:21.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_payments:14.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_trade_finance:14.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_treasury_management:14.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*
- cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_convergence:3.0.2.2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_convergence:3.0.2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_convergence:3.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:*range: >=12.0.1.0.0,<=12.0.4.0.0
- cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*Range: >=8.3.0.0,<=8.5.1.0
- cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*Range: <9.0
- cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:*range: >=12.0.1.0.0,<=12.0.4.0.0
- cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_performance_intelligence_center:10.4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*Range: <9.0
- cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*Range: <9.0
cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_user_data_repository:12.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_for_peoplesoft:13.4.1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:enterprise_manager_for_peoplesoft:13.4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_for_peoplesoft:13.5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*Range: >=8.0.7,<=8.1.1
cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.0.8.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.0.8.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_universal_banking:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:flexcube_universal_banking:*:*:*:*:*:*:*:*range: >=12.1.0,<=12.4
- cpe:2.3:a:oracle:flexcube_universal_banking:11.83.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:flexcube_universal_banking:14.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_data_repository:8.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_foundation:*:*:*:*:*:*:*:*Range: >=7.3.0.1,<=7.3.0.4
- cpe:2.3:a:oracle:healthcare_master_person_index:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_translational_research:4.1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:healthcare_translational_research:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_translational_research:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:health_sciences_empirica_signal:9.1.0.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:health_sciences_empirica_signal:9.1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:health_sciences_empirica_signal:9.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:health_sciences_inform:6.2.1.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:health_sciences_inform:6.2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:health_sciences_inform:6.3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:health_sciences_inform:7.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:health_sciences_information_manager:*:*:*:*:*:*:*:*Range: >=3.0.1,<=3.0.4
cpe:2.3:a:oracle:hospitality_suite8:8.13.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:hospitality_suite8:8.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hospitality_suite8:8.14.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hospitality_token_proxy_service:19.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hyperion_data_relationship_management:*:*:*:*:*:*:*:*Range: <11.2.8.0
- cpe:2.3:a:oracle:hyperion_infrastructure_technology:*:*:*:*:*:*:*:*Range: <11.2.8.0
- cpe:2.3:a:oracle:hyperion_planning:*:*:*:*:*:*:*:*Range: <11.2.8.0
- cpe:2.3:a:oracle:hyperion_profitability_and_cost_management:*:*:*:*:*:*:*:*Range: <11.2.8.0
- cpe:2.3:a:oracle:hyperion_tax_provision:*:*:*:*:*:*:*:*Range: <11.2.8.0
cpe:2.3:a:oracle:identity_management_suite:12.2.1.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:identity_management_suite:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:identity_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:identity_manager_connector:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:insurance_data_gateway:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*range: >=5.4,<=5.6.0.0
- cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:management_cloud_engine:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*Range: <=8.0.29
cpe:2.3:a:oracle:payment_interface:19.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:payment_interface:19.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:payment_interface:20.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*range: >=17.12.0,<=17.12.11
- cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*range: >=19.12.0.0,<=19.12.18.0
- cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_customer_insights:15.0.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_customer_insights:15.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_customer_insights:16.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_data_extractor_for_merchandising:15.0.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_data_extractor_for_merchandising:15.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_data_extractor_for_merchandising:16.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_eftlink:21.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_financial_integration:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:oracle:retail_financial_integration:*:*:*:*:*:*:*:*range: >=16.0.1,<=16.0.3
- cpe:2.3:a:oracle:retail_financial_integration:14.1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_financial_integration:15.0.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_financial_integration:19.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_financial_integration:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:oracle:retail_integration_bus:*:*:*:*:*:*:*:*range: >=16.0.1,<=16.0.3
- cpe:2.3:a:oracle:retail_integration_bus:14.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_merchandising_system:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_price_management:14.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_price_management:15.0.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_price_management:16.0.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:oracle:retail_service_backbone:*:*:*:*:*:*:*:*range: >=16.0.1,<=16.0.3
- cpe:2.3:a:oracle:retail_service_backbone:14.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_service_backbone:19.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_store_inventory_management:14.0.4.13:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:oracle:retail_store_inventory_management:14.0.4.13:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_store_inventory_management:14.1.3.14:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_store_inventory_management:14.1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_store_inventory_management:15.0.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_store_inventory_management:15.0.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_store_inventory_management:16.0.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:siebel_ui_framework:*:*:*:*:*:*:*:*Range: <=21.12
cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:*range: >=4.3.0.1.0,<=4.3.0.6.0
- cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:utilities_framework:4.4.0.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:utilities_framework:4.4.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:network_security_manager:*:*:*:*:on-premises:*:*:*+ 1 more
- cpe:2.3:a:sonicwall:network_security_manager:*:*:*:*:on-premises:*:*:*range: >=2.0,<3.0
- cpe:2.3:a:sonicwall:network_security_manager:*:*:*:*:saas:*:*:*range: >=2.0,<3.0
- cpe:2.3:a:sonicwall:web_application_firewall:*:*:*:*:*:*:*:*Range: >=3.0.0,<3.1.0
- cpe:2.3:o:sonicwall:6bk1602-0aa12-0tp0_firmware:*:*:*:*:*:*:*:*Range: <2.7.0
- cpe:2.3:o:sonicwall:6bk1602-0aa22-0tp0_firmware:*:*:*:*:*:*:*:*Range: <2.7.0
- cpe:2.3:o:sonicwall:6bk1602-0aa32-0tp0_firmware:*:*:*:*:*:*:*:*Range: <2.7.0
- cpe:2.3:o:sonicwall:6bk1602-0aa42-0tp0_firmware:*:*:*:*:*:*:*:*Range: <2.7.0
- cpe:2.3:o:sonicwall:6bk1602-0aa52-0tp0_firmware:*:*:*:*:*:*:*:*Range: <2.7.0
- ghsa-coords4 versionspkg:maven/org.apache.logging.log4j/log4j-corepkg:maven/org.ops4j.pax.logging/pax-logging-log4j2pkg:rpm/opensuse/log4j&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/log4j&distro=openSUSE%20Leap%2015.3
>= 2.4.0, < 2.12.3+ 3 more
- (no CPE)range: >= 2.4.0, < 2.12.3
- (no CPE)range: >= 1.8.0, < 1.9.2
- (no CPE)range: < 2.17.0-lp152.3.12.1
- (no CPE)range: < 2.17.0-4.13.1
- Apache Software Foundation/Apache Log4j2v5Range: log4j-core
Patches
Vulnerability mechanics
References
21- www.oracle.com/security-alerts/cpuapr2022.htmlnvdPatchThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpujan2022.htmlnvdPatchThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2021/12/19/1nvdMailing ListMitigationThird Party AdvisoryWEB
- cert-portal.siemens.com/productcert/pdf/ssa-479842.pdfnvdThird Party AdvisoryWEB
- cert-portal.siemens.com/productcert/pdf/ssa-501673.pdfnvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-p6xc-xr62-6r2gghsaADVISORY
- logging.apache.org/log4j/2.x/security.htmlnvdRelease NotesVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2021-45105ghsaADVISORY
- psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032nvdThird Party AdvisoryWEB
- security.netapp.com/advisory/ntap-20211218-0001/nvdThird Party Advisory
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbdnvdThird Party AdvisoryWEB
- www.debian.org/security/2021/dsa-5024nvdThird Party AdvisoryWEB
- www.kb.cert.org/vuls/id/930724nvdThird Party AdvisoryUS Government ResourceWEB
- www.oracle.com/security-alerts/cpujul2022.htmlnvdThird Party AdvisoryWEB
- www.zerodayinitiative.com/advisories/ZDI-21-1541/nvdThird Party AdvisoryVDB Entry
- lists.debian.org/debian-lts-announce/2021/12/msg00017.htmlghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCYghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJghsaWEB
- sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbdghsaWEB
- security.netapp.com/advisory/ntap-20211218-0001ghsaWEB
- www.zerodayinitiative.com/advisories/ZDI-21-1541ghsaWEB
News mentions
0No linked articles in our index yet.