Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
21 Nov 2024, 06:31
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.openwall.com/lists/oss-security/2021/12/14/4 - Mailing List, Mitigation, Third Party Advisory | |
References | () http://www.openwall.com/lists/oss-security/2021/12/15/3 - Mailing List, Third Party Advisory | |
References | () http://www.openwall.com/lists/oss-security/2021/12/18/1 - Mailing List, Third Party Advisory | |
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-397453.pdf - Third Party Advisory | |
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf - Third Party Advisory | |
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf - Third Party Advisory | |
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf - Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY/ - Mailing List, Release Notes | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ/ - Mailing List, Release Notes | |
References | () https://logging.apache.org/log4j/2.x/security.html - Mitigation, Release Notes, Vendor Advisory | |
References | () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032 - Third Party Advisory | |
References | () https://security.gentoo.org/glsa/202310-16 - Third Party Advisory | |
References | () https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd - Third Party Advisory | |
References | () https://www.cve.org/CVERecord?id=CVE-2021-44228 - Not Applicable | |
References | () https://www.debian.org/security/2021/dsa-5022 - Third Party Advisory | |
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html - Third Party Advisory | |
References | () https://www.kb.cert.org/vuls/id/930724 - Third Party Advisory, US Government Resource | |
References | () https://www.oracle.com/security-alerts/alert-cve-2021-44228.html - Third Party Advisory | |
References | () https://www.oracle.com/security-alerts/cpuapr2022.html - Third Party Advisory | |
References | () https://www.oracle.com/security-alerts/cpujan2022.html - Patch, Third Party Advisory | |
References | () https://www.oracle.com/security-alerts/cpujul2022.html - Third Party Advisory |
31 Oct 2024, 12:17
Type | Values Removed | Values Added |
---|---|---|
First Time |
Cvat computer Vision Annotation Tool
Cvat |
|
CPE | cpe:2.3:a:cvat:computer_vision_annotation_tool:-:*:*:*:*:*:*:* |
27 Jun 2024, 19:24
Type | Values Removed | Values Added |
---|---|---|
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY/ - Mailing List, Release Notes | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ/ - Mailing List, Release Notes | |
References | () https://security.gentoo.org/glsa/202310-16 - Third Party Advisory |
27 Jun 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-917 | |
References |
|
|
References | (MISC) https://www.oracle.com/security-alerts/cpuapr2022.html - Third Party Advisory | |
References | (N/A) https://www.oracle.com/security-alerts/cpujul2022.html - Third Party Advisory |
25 Jul 2022, 18:18
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Apr 2022, 00:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Feb 2022, 04:42
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-397453.pdf - Third Party Advisory | |
References | (MISC) https://www.oracle.com/security-alerts/cpujan2022.html - Patch, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY/ - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf - Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:h:siemens:6bk1602-0aa22-0tp0:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:6bk1602-0aa12-0tp0_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:6bk1602-0aa12-0tp0:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:6bk1602-0aa42-0tp0:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:6bk1602-0aa32-0tp0_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:6bk1602-0aa52-0tp0:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:6bk1602-0aa52-0tp0_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:6bk1602-0aa42-0tp0_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:h:siemens:6bk1602-0aa32-0tp0:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:tracealertserverplus:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:6bk1602-0aa22-0tp0_firmware:*:*:*:*:*:*:*:* |
07 Feb 2022, 16:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Dec 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Dec 2021, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Dec 2021, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Dec 2021, 16:21
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032 - Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/12/18/1 - Mailing List, Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2021/dsa-5022 - Third Party Advisory | |
References | (CONFIRM) https://www.oracle.com/security-alerts/alert-cve-2021-44228.html - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.1
v3 : 9.0 |
CPE | cpe:2.3:a:sonicwall:email_security:*:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
20 Dec 2021, 11:15
Type | Values Removed | Values Added |
---|---|---|
Summary | It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default. |
18 Dec 2021, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Dec 2021, 10:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Dec 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Dec 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Dec 2021, 20:19
Type | Values Removed | Values Added |
---|---|---|
References | (CERT-VN) https://www.kb.cert.org/vuls/id/930724 - Third Party Advisory, US Government Resource | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/12/15/3 - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf - Third Party Advisory | |
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf - Third Party Advisory | |
References | (CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd - Third Party Advisory | |
CPE | cpe:2.3:o:siemens:dynamic_security_assessment:4.2:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_manager:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:siemens:simatic_wincc:7.4:*:*:*:*:*:*:* cpe:2.3:o:siemens:mendix:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:mindsphere:*:*:*:*:cloud:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:*:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_info_center:5.1:*:*:*:*:*:*:* cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:industrial_edge_management:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:capital:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.0:*:*:*:*:*:*:* cpe:2.3:o:siemens:dynamic_security_assessment:4.4:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:a:arubanetworks:silver_peak_orchestrator:-:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:5.1:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_vantage:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_enterprise_data_management:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:industrial_edge_manangement_hub:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:industrial_edge_management:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_info_center:5.0:*:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_tools:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:siemens:siveillance_control:*:*:*:*:pro:*:*:* cpe:2.3:a:siemens:teamcenter_suite:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:logo\!_soft_comfort:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.1:*:*:*:*:*:*:* cpe:2.3:a:netapp:brocade_san_navigator:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:e-car_operating_center:*:*:*:*:cloud:*:*:* cpe:2.3:a:siemens:head-end_system_universal_device_integration_system:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:5.0:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.2:*:*:*:*:*:*:* cpe:2.3:o:siemens:dynamic_security_assessment:4.3:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_wiring_harness_design:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:opcenter_intelligence:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:cosmos:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:nx:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:siemens:operation_scheduler:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_package_integrator:*:*:*:*:*:*:*:* |
cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_harness_design:2020:sp2002:*:*:*:*:*:* cpe:2.3:a:siemens:energyip:8.7:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_advanced_reports:4.1:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:2019.1:*:*:*:*:*:*:* cpe:2.3:a:siemens:energyip:9.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:captial:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:e-car_operation_center:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_7:2.30:*:*:*:*:*:*:* cpe:2.3:a:siemens:siguard_dsa:4.2:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:2019.1:-:*:*:*:*:*:* cpe:2.3:a:siemens:logo\!_soft_comfort:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_info_center:5.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:nx:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:navigator:*:*:*:*:*:*:*:* cpe:2.3:a:intel:genomics_kernel_library:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:siguard_dsa:4.3:*:*:*:*:*:*:* cpe:2.3:a:siemens:sentron_powermanager:4.2:*:*:*:*:*:*:* cpe:2.3:a:siemens:energy_engage:3.1:*:*:*:*:*:*:* cpe:2.3:o:siemens:sppa-t3000_ses3000_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_harness_design:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:head-end_system_universal_device_integration_system:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_advanced_reports:4.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_advanced_reports:5.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_7:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_harness_design:2020:-:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_harness_design:2020:*:*:*:*:*:*:* cpe:2.3:a:siemens:industrial_edge_management:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_viewpoint:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:operation_scheduler:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_control_pro:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_7:2.30:sp2:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_advanced_reports:4.2:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_7:2.30:-:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_vantage:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_package_integrator:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:industrial_edge_management_hub:*:*:*:*:*:*:*:* cpe:2.3:a:intel:computer_vision_annotation_tool:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:energyip:8.6:*:*:*:*:*:*:* cpe:2.3:a:siemens:opcenter_intelligence:*:*:*:*:*:*:*:* cpe:2.3:a:intel:sensor_solution_firmware_development_kit:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:energyip:8.5:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_info_center:5.1:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_enterprise:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:sentron_powermanager:4.1:*:*:*:*:*:*:* cpe:2.3:a:siemens:captial:2019.1:-:*:*:*:*:*:* cpe:2.3:h:siemens:sppa-t3000_ses3000:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:mindsphere:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:teamcenter:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:siguard_dsa:4.4:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_cam_pro:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:2019.1:sp1912:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_cc_advanced_reports:5.1:*:*:*:*:*:*:* cpe:2.3:a:intel:system_studio:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:captial:2019.1:sp1912:*:*:*:*:*:* cpe:2.3:a:siemens:mendix:*:*:*:*:*:*:*:* |
16 Dec 2021, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Dec 2021, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Dec 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Dec 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in a denial of service (DOS) attack. Log4j 2.15.0 makes a best-effort attempt to restrict JNDI LDAP lookups to localhost by default. Log4j 2.16.0 fixes this issue by removing support for message lookup patterns and disabling JNDI functionality by default. |
15 Dec 2021, 16:15
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 2.6
v3 : 3.7 |
Summary | It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in a denial of service (DOS) attack. Log4j 2.15.0 makes a best-effort attempt to restrict JNDI LDAP lookups to localhost by default. Log4j 2.16.0 fixes this issue by removing support for message lookup patterns and disabling JNDI functionality by default. | |
CPE | cpe:2.3:a:siemens:spectrum_power_7:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:dynamic_security_assessment:4.2:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_identity:1.6:*:*:*:*:*:*:* cpe:2.3:o:siemens:mindsphere:*:*:*:*:cloud:*:*:* cpe:2.3:a:intel:audio_development_kit:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:sipass_integrated:2.80:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_command:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_4:4.70:sp8:*:*:*:*:*:* cpe:2.3:a:intel:system_debugger:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:5.1:*:*:*:*:*:*:* cpe:2.3:o:siemens:industrial_edge_manangement_hub:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:a:apache:log4j:2.0:rc1:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_tools:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:siemens:desigo_consumption_control_info_center:5.0:*:*:*:*:*:*:* cpe:2.3:a:siemens:energyip_prepay:3.7:*:*:*:*:*:*:* cpe:2.3:a:siemens:e-car_operating_center:*:*:*:*:cloud:*:*:* cpe:2.3:a:intel:oneapi:-:*:*:*:*:eclipse:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:5.0:*:*:*:*:*:*:* cpe:2.3:a:apache:log4j:2.0:-:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.2:*:*:*:*:*:*:* cpe:2.3:o:siemens:dynamic_security_assessment:4.3:*:*:*:*:*:*:* cpe:2.3:a:siemens:solid_edge_wiring_harness_design:-:*:*:*:*:*:*:* cpe:2.3:a:arubanetworks:silver_peak_orchestrator:-:*:*:*:*:*:*:* cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_identity:1.5:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_manager:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:apache:log4j:2.0:beta9:*:*:*:*:*:* cpe:2.3:a:siemens:simatic_wincc:7.4:*:*:*:*:*:*:* cpe:2.3:o:siemens:mendix:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:*:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:energyip_prepay:3.8:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_info_center:5.1:*:*:*:*:*:*:* cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* cpe:2.3:a:intel:secure_device_onboard:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_4:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_4:4.70:sp7:*:*:*:*:*:* cpe:2.3:a:siemens:industrial_edge_management:-:*:*:*:*:*:*:* cpe:2.3:a:apache:log4j:2.0:rc2:*:*:*:*:*:* cpe:2.3:a:siemens:capital:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:sipass_integrated:2.85:*:*:*:*:*:*:* cpe:2.3:a:siemens:spectrum_power_4:4.70:-:*:*:*:*:*:* cpe:2.3:o:siemens:dynamic_security_assessment:4.4:*:*:*:*:*:*:* cpe:2.3:a:siemens:gma-manager:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_vantage:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_enterprise_data_management:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:industrial_edge_management:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:siveillance_control:*:*:*:*:pro:*:*:* cpe:2.3:a:siemens:teamcenter_suite:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:logo\!_soft_comfort:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:desigo_consumption_control_advanced_reporting:4.1:*:*:*:*:*:*:* cpe:2.3:a:netapp:brocade_san_navigator:-:*:*:*:*:*:*:* cpe:2.3:a:intel:datacenter_manager:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:head-end_system_universal_device_integration_system:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:opcenter_intelligence:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:vesys:-:*:*:*:*:*:*:* cpe:2.3:a:siemens:cosmos:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:nx:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:siemens:operation_scheduler:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:xpedition_package_integrator:*:*:*:*:*:*:*:* |
|
References |
|
|
References | (MISC) https://logging.apache.org/log4j/2.x/security.html - Mitigation, Release Notes, Vendor Advisory | |
References | (MISC) https://www.cve.org/CVERecord?id=CVE-2021-44228 - Not Applicable | |
References | (CONFIRM) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html - Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/12/14/4 - Mailing List, Mitigation, Third Party Advisory | |
CWE | CWE-502 |
15 Dec 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Dec 2021, 19:18
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Published : 2021-12-14 19:15
Updated : 2024-11-21 06:31
NVD link : CVE-2021-45046
Mitre link : CVE-2021-45046
CVE.ORG link : CVE-2021-45046
JSON object : View
intel
- datacenter_manager
- secure_device_onboard
- audio_development_kit
- system_studio
- genomics_kernel_library
- system_debugger
- oneapi
- sensor_solution_firmware_development_kit
siemens
- 6bk1602-0aa22-0tp0
- 6bk1602-0aa52-0tp0
- comos
- sppa-t3000_ses3000_firmware
- siveillance_identity
- siveillance_viewpoint
- 6bk1602-0aa32-0tp0_firmware
- xpedition_package_integrator
- opcenter_intelligence
- operation_scheduler
- sipass_integrated
- mindsphere
- solid_edge_cam_pro
- 6bk1602-0aa42-0tp0
- industrial_edge_management_hub
- siguard_dsa
- teamcenter
- 6bk1602-0aa22-0tp0_firmware
- siveillance_vantage
- gma-manager
- tracealertserverplus
- 6bk1602-0aa52-0tp0_firmware
- xpedition_enterprise
- spectrum_power_4
- 6bk1602-0aa12-0tp0
- nx
- spectrum_power_7
- 6bk1602-0aa42-0tp0_firmware
- energy_engage
- siveillance_control_pro
- desigo_cc_info_center
- logo\!_soft_comfort
- siveillance_command
- desigo_cc_advanced_reports
- sentron_powermanager
- e-car_operation_center
- energyip
- solid_edge_harness_design
- 6bk1602-0aa32-0tp0
- navigator
- mendix
- vesys
- industrial_edge_management
- sppa-t3000_ses3000
- energyip_prepay
- head-end_system_universal_device_integration_system
- captial
- 6bk1602-0aa12-0tp0_firmware
apache
- log4j
debian
- debian_linux
cvat
- computer_vision_annotation_tool
sonicwall
- email_security
fedoraproject
- fedora
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')