Timesten Grid
1 CVEs
product
Monthly
JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. Epss exploitation probability 72.2% and no vendor patch available.
RCE
Deserialization
Apache
Log4J
Fedora
+44
NVD
GitHub
VulDB
CVSS 3.1
7.5
EPSS
72.2%
CVE-2021-4104
Maven
EPSS 72%
CVSS 7.5
HIGH
Act Now
JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. Epss exploitation probability 72.2% and no vendor patch available.
RCE
Deserialization
Apache
+46
NVD
GitHub
VulDB