CVE STALKER

CVE-2021-45105

CVSS
DESCRIPTIONApache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0 and 2.12.3.
HEAT SCORE1999

WORDS

TWEETS

DATE TWEETS USER
2022-01-20 18:11:07✅RP 5.6.3 released: Log4J vulnerabilities CVE-2021-44832, CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 address… https://t.co/EjgIx6iSYm https://twitter.com/i/web/status/1484225602043400194ReportPortal_io
2022-01-20 11:40:35webに関わる人々が慌てたApache Log4jの脆弱性(CVE-2021-44228)ですが、CVE-2021-45105とかCVE-2021-44832とか、色んな数字出てきてなんなん?と思った方はこのサイト見るといいですよ。 https://t.co/7YWypmI2Qp https://www.ipa.go.jp/security/vuln/CVE.htmlJunichirou_Ueno
2022-01-19 06:12:03IT Risk: Oracle.Multiple vulnerabilities in Retail Applications -2/2 CVE-2021-45105 CVE-2021-45046 CVE-2021-44832 C… https://t.co/nQwkH2pvNt https://twitter.com/i/web/status/1483681684415746052management_sun
2022-01-18 10:10:17JBoss Tools and Red Hat CodeReady Studio for Eclipse 2021-09 security fix release for Apache Log4j CVE-2021-45105 a… https://t.co/dWxjSQ7XCr https://twitter.com/i/web/status/1483380759046012928jbosstools
2022-01-18 05:20:35Google Cloud IDS のシグネチャの更新による Apache Log4j の脆弱性 CVE-2021-44228、CVE-2021-45046、CVE-2021-4104、CVE-2021-45105、CVE-2021… https://t.co/VX8nUIg6gh https://twitter.com/i/web/status/1483307993034899460kaz_goto
2022-01-14 01:40:14CVE-2021-45105 のパッチ出たんだね https://t.co/qYSK8boJrY https://access.redhat.com/errata/RHSA-2022:0026Santea3173
2022-01-13 22:20:29#HCL #Knowledgebase CVE-2021-44228 + CVE-2021-45046 + CVE-2021-45105 + CVE-2021-44832 + CVE-2021-4104, Log4J / Log4… https://t.co/BJw9XiuFG7 https://twitter.com/i/web/status/1481752885293731841domino_robot
2022-01-13 15:00:53Escanee aplicaciones en busca de vulnerabilidades #log4j CVE-2021-44228, CVE-2021-45046 y CVE-2021-45105 con la cap… https://t.co/3EWsJazjDs https://twitter.com/i/web/status/1481637229994799111a190468
2022-01-13 08:52:46Escanee aplicaciones en busca de vulnerabilidades #log4j CVE-2021-44228, CVE-2021-45046 y CVE-2021-45105 con la cap… https://t.co/myCjhYdQUG https://twitter.com/i/web/status/1481547097690230784FranciscoJCarb1
2022-01-12 18:00:09Escanee aplicaciones en busca de vulnerabilidades #log4j CVE-2021-44228, CVE-2021-45046 y CVE-2021-45105 con la cap… https://t.co/8q5xx8NXZk https://twitter.com/i/web/status/1481325101853384705HCLSoftware
2022-01-12 17:00:07Сканируйте приложения на наличие уязвимости #log4j CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 при помощи HCL… https://t.co/Da6uw7X3sK https://twitter.com/i/web/status/1481310006343454721HCLSoftware
2022-01-12 00:54:44Security Bulletin: Multiple vulnerabilities in Apache log4j affect IBM WebSphere Application Server (CVE-2021-45105… https://t.co/cdDL0Pb0S7 https://twitter.com/i/web/status/1481063385034858496knaepp
2022-01-12 00:22:23Security Bulletin: IBM MQ Blockchain bridge dependencies are vulnerable to an issue in Apache Log4j (CVE-2021-45105) https://t.co/22VN0nphQT https://ift.tt/3Fdx7Ipmicsieg
2022-01-11 21:01:23Scan applications #log4j vulnerabilities #cve CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 #hclswlobp… https://t.co/Q7o7QCpzfY https://twitter.com/i/web/status/1481006730477805580FraCurzi
2022-01-11 20:30:05Scan applications for #log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 with HCL AppScan's Op… https://t.co/qA8GsEfkvC https://twitter.com/i/web/status/1481000095034351620stefanopog
2022-01-11 16:42:17Scan applications for #log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 with HCL AppScan's Op… https://t.co/8JMRGGCbxA https://twitter.com/i/web/status/1480940204160659462a190468
2022-01-10 13:30:07Scan applications for #log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 with HCL AppScan's Op… https://t.co/zbWWNIYUIu https://twitter.com/i/web/status/1480530495289151499bale1966
2022-01-10 08:00:14Scan applications for #log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 with HCL AppScan's Op… https://t.co/BpqLsxa1dE https://twitter.com/i/web/status/1480447925679448067FranciscoJCarb1
2022-01-07 15:00:04Scan applications for #log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, & CVE-2021-45105 with HCL AppScan's Op… https://t.co/KkwFENHeMO https://twitter.com/i/web/status/1479467866470690822HCLSoftware
2022-01-07 07:19:38興味を持った記事: 【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへのアップデートを推奨 https://t.co/G7WsZcQGPO https://buff.ly/3n1aH6Gmiyake_hikaru
2022-01-07 06:42:49Also this gem from a product advisory. Jesus wept. "Regarding CVE-2021-45105, This vulnerability is a Denial of Se… https://t.co/hAWb23uyJz https://twitter.com/i/web/status/1479340061447491585IsJamesAlive
2022-01-07 01:10:05“【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへのアップデートを推奨” https://t.co/10tU90NBbs https://htn.to/FVbH4suH2Jlabunix
2022-01-05 14:40:04Update for advisory OBS02112-01 published: Updates for impact of CVE-2021-45046,CVE-2021-45105UnifyCoSecurity
2022-01-05 13:40:09Multiple vulnerabilities in Apache log4j affect IBM WebSphere Application Server (CVE-2021-45105, CVE-2021-44832) https://t.co/Lt9uQLl2bu https://tinyurl.com/y5gnlzsnknaepp
2022-01-05 07:50:36IT Risk: Apache.Multiple vulnerabilities in log4j2 (UPDATE) -2/2 CVE-2021-45105 CVE-2021-45046 CVE-2021-44832 CVE-2021-44228 CVE-2021-4104management_sun
2022-01-05 07:40:09IT Risk: Apache.log4j2に複数の脆弱性(UPDATE) -2/2 CVE-2021-45105 CVE-2021-45046 CVE-2021-44832 CVE-2021-44228 CVE-2021-4104management_sun
2022-01-05 05:20:13【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへのアップデートを推奨:CodeZine(コードジン) https://t.co/qoNpmlvWWm https://bit.ly/3mYrRSCcomonacojp
2022-01-05 04:01:46【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへの ... https://t.co/5ZocCoe6ob https://t.co/Xr5yXgMrhl http://izumino.jp/Security/sec_trend.cgi?ref=tw&ref_date=2022-01-05%2012%3A50 https://codezine.jp/article/detail/15411sec_trend
2022-01-04 23:41:20“【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへのアップデートを推奨” https://t.co/wRkEATHI4o https://htn.to/2kk1Ye4r2Ukwdnet
2022-01-04 23:30:30【Apache Log4j脆弱性 続報】IPAが12/27に対策を更新、CVE-2021-45105対応バージョンへのアップデートを推奨 https://t.co/ccev5Q3wkW http://codezine.jp/article/detail/15411codezine
2022-01-03 21:20:25.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/UDI2kni8N6 https://twitter.com/i/web/status/1478109422559760387rhpowell4
2021-12-30 21:20:05#HCL #Knowledgebase CVE-2021-44228 + CVE-2021-45046 + CVE-2021-45105 + CVE-2021-44832, Log4J 2 / Log4Shell Security… https://t.co/vl7qjRZXIF https://twitter.com/i/web/status/1476664181860483080domino_robot
2021-12-30 18:30:22New post from https://t.co/9KYxtdZjkl (CVE-2021-45105 (6bk1602-0aa12-0tp0_firmware, 6bk1602-0aa22-0tp0_firmware, 6b… https://t.co/CjZd1QVHLQ http://www.sesin.at https://twitter.com/i/web/status/1476619170670432267www_sesin_at
2021-12-30 18:30:16New post from https://t.co/uXvPWJy6tj (CVE-2021-45105 (6bk1602-0aa12-0tp0_firmware, 6bk1602-0aa22-0tp0_firmware, 6b… https://t.co/mdChxeUqT7 http://www.sesin.at https://twitter.com/i/web/status/1476619187166629903WolfgangSesin
2021-12-30 16:51:33🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not prote… https://t.co/4riJpiiXSS https://twitter.com/i/web/status/1476595206678102016threatintelctr
2021-12-29 21:20:16Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832. | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-29 16:40:03Listado de CVE: CVE-2021-44228 CVE-2021-45046 CVE-2021-45105orvotron
2021-12-29 09:27:25🔴APACHE🔴 Múltiples vulnerabilidades de severidad alta en productos APACHE: CVE-2021-45105,CVE-2021-44228 Más inf… https://t.co/ZlTUbZyzv8 https://twitter.com/i/web/status/1476119536453787648GrupoICA_Ciber
2021-12-29 09:22:21🔴DEBIAN🔴 Múltiples vulnerabilidades de severidad alta en productos DEBIAN: CVE-2021-45105,CVE-2021-44228 Más inf… https://t.co/XuAg2SlXjP https://twitter.com/i/web/status/1476120318653739009GrupoICA_Ciber
2021-12-29 09:21:41🔴NETAPP🔴 Múltiples vulnerabilidades de severidad alta en productos NETAPP: CVE-2021-45105,CVE-2021-44228 Más inf… https://t.co/AuDMvHbbRA https://twitter.com/i/web/status/1476120406721536000GrupoICA_Ciber
2021-12-29 08:40:24🏴‍☠️ La saga #Log4j continue après CVE-2021-45105, CVE-2021-45046 CVE-2021-44228 voici CVE-2021-44832. Ce RCE est c… https://t.co/SNE8CbTMK6 https://twitter.com/i/web/status/1476110714460946433JMousqueton
2021-12-29 06:12:13CVE-2021-44228 Impact of Log4j Vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CV.. -… https://t.co/zJivEoE6kb https://twitter.com/i/web/status/1476071810563198976CisoInvisible
2021-12-29 03:22:21Apache Log4j多个高危漏洞(CVE-2021-44228/CVE-2021-4104/CVE-2021-45046/CVE-2021-45105/ CVE-2021-44832)处置手册… https://t.co/KRdS7el5sf https://twitter.com/i/web/status/1476028120683663361buaqbot
2021-12-29 02:30:37Apache Log4j多个高危漏洞(CVE-2021-44228/CVE-2021-4104/CVE-2021-45046/CVE-2021-45105/ CVE-2021-44832)处置手册… https://t.co/TzOFQTnEWM https://twitter.com/i/web/status/1476013588741566469buaqbot
2021-12-29 00:21:16Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832. | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-28 22:47:43Update 2: Syhunt Hybrid 6.9.11.4, released today, adds check for this new CVE-2021-44832 and also CVE-2021-45105 (D… https://t.co/RwWCHeJc3C https://twitter.com/i/web/status/1475958501516136451syhunt
2021-12-28 21:00:08🔥RP 5.6.2 released. Log4J CVE-2021-45105 vulnerability resolved. Now we got it all covered. --> https://t.co/vc67qml1RB https://github.com/reportportal/reportportal/tree/5.6.2ReportPortal_io
2021-12-28 17:20:15「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 https://t.co/RAlCxTGa9f https://t.co/W59amUqbzw http://dlvr.it/SG8vGKproty22
2021-12-28 17:20:09.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/l9n1IN3jOV https://twitter.com/i/web/status/1475878678722531329jamncl4
2021-12-28 17:20:03🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not prote… https://t.co/FNThrIHVcP https://twitter.com/i/web/status/1475879108542349325threatintelctr
2021-12-28 15:10:08CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-28 14:00:07@0xDUDE If it affects the same number of real-world products as CVE-2021-45046 or CVE-2021-45105, your weekend should be just fine.wdormann
2021-12-28 13:40:11.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/VZcVUhN55z https://twitter.com/i/web/status/1475822101596569603KubaLatkiewicz
2021-12-28 12:30:06これのパッチそんなに急がないけどそこそこで出て欲しいな〜 CVE-2021-45105 https://t.co/GnB3vDvYi1 https://access.redhat.com/security/cve/cve-2021-45105Santea3173
2021-12-28 09:00:09🔴APACHE🔴 Múltiples vulnerabilidades de severidad alta en productos APACHE: CVE-2021-45046,CVE-2021-45105 Más inf… https://t.co/4nviNBsgRN https://twitter.com/i/web/status/1475752154161889281GrupoICA_Ciber
2021-12-28 05:00:16@nohoyan CVE-2021-45105は影響ないから、Log4j 2.17.0には対応せず、2.16.0止まりってことかな。(ここでやり取りせんでもいいがw)yamadamn
2021-12-28 02:40:12[ブログ更新] Apache Log4j脆弱性(CVE-2021-45046, CVE-2021-45105)のIBM Db2への影響について https://t.co/L8jsi5jC8L https://j.mp/3z4YAKJsimosako
2021-12-28 00:41:18凄く久しぶりですが、Unofficial DB2 Blogに1つポストしました。Apache Log4j脆弱性(CVE-2021-45046, CVE-2021-45105)のIBM Db2への影響についてのSecurity Bu… https://t.co/gntkAKJbJH https://twitter.com/i/web/status/1475625883402924032simosako
2021-12-27 21:30:38.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/fG8mwF4qR1 https://twitter.com/i/web/status/1475579331082526732Cobalt2012
2021-12-27 16:01:38CVE-2021-45105 - https://t.co/U0k0ZBLfWk #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105/RedPacketSec
2021-12-27 16:01:31CVE-2021-45105 - https://t.co/rSBWHgUb17 #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105-2/RedPacketSec
2021-12-27 16:01:24CVE-2021-45105 - https://t.co/deuPgdCC4C #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105-3/RedPacketSec
2021-12-27 16:01:17CVE-2021-45105 - https://t.co/jazC2Fcv6h #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105-4/RedPacketSec
2021-12-27 16:01:10CVE-2021-45105 - https://t.co/ddFeHBAXLA #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105-5/RedPacketSec
2021-12-27 15:00:28.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/BrLtkJzrkl https://twitter.com/i/web/status/1475480807573573633Md_Adil
2021-12-27 14:20:36ポイントです👉 追加: 「以下 Apache Log4j 任意のコード実行に関する脆弱性に関しても、製品に対する影響はありません。」 CVE-2021-4104 CVE-2021-45046 CVE-2021-45105 CV… https://t.co/S8nQ0ZSgEk https://twitter.com/i/web/status/1475470669874106372twinklestar1111
2021-12-27 13:52:28.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/lef87qfusS https://twitter.com/i/web/status/1475462556114243586AkamaiRay
2021-12-27 12:20:25Security Bulletin: Apache Log4j vulnerabilities, CVE-2021-45105 (affecting v2.16) and CVE-2021-45046 (affecting v2.… https://t.co/HoHyaqTLHM https://twitter.com/i/web/status/1475441339164766211cybsecbot
2021-12-27 06:10:17Announcing Calcite release 1.29! Upgrades log4j to 2.17 to fix CVE-2021-44228 and CVE-2021-45105; among other featu… https://t.co/HTKumcPWae https://twitter.com/i/web/status/1475347722148319233ApacheCalcite
2021-12-27 04:50:05🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/cDRwY7hdSO https://twitter.com/i/web/status/1475327971887968259threatintelctr
2021-12-27 03:21:04🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/xCTwU1JMoK https://twitter.com/i/web/status/1475305321987989506threatintelctr
2021-12-26 12:21:42「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 - https://t.co/r05DGSWNN7 https://blog.trendmicro.co.jp/archives/29787ka0com
2021-12-26 06:30:53Mohist-1.7.10のlog4j脆弱性(CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)対策版出ました https://t.co/8LWOMLcm19 https://ci.codemc.io/job/MohistMC/job/Mohist-1.7.10/45/Kaiz_JP
2021-12-25 20:50:46.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/L8AddNN8Y9 https://twitter.com/i/web/status/1474843526475042816claytonssantos
2021-12-25 11:50:12We’re happy to announce version 5.4.3 of #JMeter which embeds log4j2 2.17 as a fix to CVE-2021-45105 in log4j2 <= 2… https://t.co/k5NK89mDEb https://twitter.com/i/web/status/1474707788479746055ApacheJMeter
2021-12-25 11:10:21A detailed guide on CVE-2021-45105. What is LDAP and JNDI, Exploiting Log4j and more #log4j #hacking #cve202144228… https://t.co/fRFDhfSUqH https://twitter.com/i/web/status/1474696792952479745hasanakajan
2021-12-25 08:40:29「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 | トレンドマイクロ セキュリティブログ https://t.co/ESrAMFlPuG https://blog.trendmicro.co.jp/archives/29787ohhara_shiojiri
2021-12-25 01:30:40「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 | トレンドマイクロ セキュリティブログ https://t.co/nIsujF7rcQ https://blog.trendmicro.co.jp/archives/29787fd0
2021-12-25 00:51:32“Zoom Security Bulletin for CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105” https://t.co/GgicIjCgoD https://htn.to/2eEhbjaYQFmodokey
2021-12-24 19:23:28「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 - トレンドマイクロ セキュリティブログ [https://t.co/4dJfMtsJTJ] https://t.co/fkBssN2Fzj http://securenews.appsight.net/entries/13763 https://blog.trendmicro.co.jp/archives/29787securenews_web
2021-12-24 19:11:53「Log4Shell」に続いて確認されたLog4jの脆弱性「CVE-2021-45105」を徹底解説 Thu, 23 Dec 2021 11:29:41 +0000 https://t.co/7wGk1WPBQH 全確保支援士NEWS https://blog.trendmicro.co.jp/archives/29787kai_ri_0001
2021-12-24 18:10:43.@FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105… https://t.co/5xXHPeRMq9 https://twitter.com/i/web/status/1474439979644375045FortiMisti1
2021-12-24 17:01:43🎉 Apache JMeter 5.4.3 has been released for the CVE-2021-45105. Please check my blog post for more details. 🔗… https://t.co/cwnBqvDDiZ https://twitter.com/i/web/status/1474422954012381188QAInsights
2021-12-24 16:40:441:regarding CVE-2021-45105 (the log4j screwup that translated in layman terms reads "no good deed will ever go unpu… https://t.co/OqlHUmldkA https://twitter.com/i/web/status/1474419156112052248RomeoLupascu
2021-12-24 16:30:59Kubernetes Java Client (CVE-2021-25738) or Log4J (CVE-2021-45105) to achieve RCE to exploit AD vulnerabilities (CVE… https://t.co/TdKG1jrJ6w https://twitter.com/i/web/status/1474415567436238848nader_shalabi
2021-12-24 15:00:37.@FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105… https://t.co/X6sk7pNfV0 https://twitter.com/i/web/status/1474392686195060736ChrisRobertsSec
2021-12-24 08:22:34Apache Struts 2 の Apache Log4j の処理にサービスを妨害される問題 (CVE-2021-45105) [40890] https://t.co/6DBrBugyHu #SIDfm #脆弱性情報 https://sid.softek.jp/content/show/40890softek_jp
2021-12-24 06:41:14Amazon Linux AMI 2 の aws-kinesis-agent にサービスを妨害される問題 (CVE-2021-45105) [40887] https://t.co/ettlep8uvs #SIDfm #脆弱性情報 https://sid.softek.jp/content/show/40887softek_jp
2021-12-23 19:27:302 new OPEN, 4 new PRO (2 + 2). CoinMiners, Kimsuky Maldoc, CVE-2021-45105 Thanks @ShadowChasing1 There will be no… https://t.co/yJJfhfvFxB https://twitter.com/i/web/status/1474095395966001159ET_Labs
2021-12-23 18:52:34> CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation. Yeah that's… https://t.co/3EwGnNM40R https://twitter.com/i/web/status/1474088925081735169squarism
2021-12-23 17:13:21In addition to CVE-2021-44228, CVE-2021-45105 is also fixed in the latest version 2.17.0. Please be assured that th… https://t.co/iFaQgtogtu https://twitter.com/i/web/status/1474062266371031040Live2D
2021-12-23 16:10:56We've updated our guidance on how to respond to #Log4j CVE-2021-45105. https://t.co/D2HY9oFmDJ https://www.waratek.com/wp-content/uploads/2021/12/Customer-Alert-CVE-2021-45105-1.pdfwaratek
2021-12-23 15:17:38CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-23 13:30:52ICYMI: Apache Solr is not vulnerable against CVE-2021-45046 and CVE-2021-45105: See https://t.co/ik9PoyjzD5 https://solr.apache.org/security.htmlhosted_solr
2021-12-23 13:30:49Apache Solr releases are not vulnerable to the followup CVE-2021-45046 and CVE-2021-45105, because the MDC patterns… https://t.co/WeYOLCJptZ https://twitter.com/i/web/status/1474006093667999745hosted_solr
2021-12-23 09:12:03最新バージョン2.17.0では、CVE-2021-44228に加え、CVE-2021-45105にも対応しています。 CVE-2021-45105の脆弱性については、現在までのCubism Editorのバージョンでは発生しませんのでご安心ください。(2/3) #Live2DLive2D
2021-12-23 08:20:53@VMwareSRC no update for CVE-2021-45105 ?goodga
2021-12-23 07:30:40Apache Struts 2.5.28.2 is out, it addresses Log4j CVE-2021-45105 vulnerability! https://t.co/xePsWG3EBY #struts #security #log4shell https://struts.apache.org/announce-2021#a20211223TheApacheStruts
2021-12-23 05:50:06.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/xWArqyggs7 https://twitter.com/i/web/status/1473893324746416132ArminBolenius
2021-12-23 05:42:25[Announcement] New Log4j Vulnerability (CVE-2021-45105) – Log4j 2 #infosec #infosecurity #cybersecurity… https://t.co/Ed7waGn6Jz https://twitter.com/i/web/status/1473889499512025088CyberIQs_
2021-12-22 22:20:10#HCL #Knowledgebase CVE-2021-44228 + CVE-2021-45046 + CVE-2021-45105, Log4J 2 / Log4Shell Security Advisory for Not… https://t.co/C3vyJ8QUT7 https://twitter.com/i/web/status/1473780311414738955domino_robot
2021-12-22 21:02:40@SonicWall Email Security 10.0.13.7217 is available. Log4j2 is updated to version 2.17.0 to address CVE-2021-45105,… https://t.co/AORfM5W0S5 https://twitter.com/i/web/status/1473758405705846795BWC_DE
2021-12-22 20:41:49Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-22 19:01:09#OpenSearch 1.2.3 is now available - as advised in CVE-2021-45105, #Log4j has been updated to 2.17.0… https://t.co/GrhuI3szSh https://twitter.com/i/web/status/1473728846927212555KrisFreedain
2021-12-22 18:50:25.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/rH3ZQfugqA https://twitter.com/i/web/status/1473726798580137984AkamaiAmanda
2021-12-22 16:19:36#WARNING! Wir wollen euch über die kritische #Schwachstelle #Apache Log4j (CVE-2021-44228, CVE-2021-45105 & CVE-20… https://t.co/rJdKnj6LQs https://twitter.com/i/web/status/1473676663527460864_premierexperts
2021-12-22 15:11:15CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-22 08:40:24SOS JobScheduler に含まれる Apache Log4j にサービスを妨害される問題 (CVE-2021-45105) [40877] https://t.co/KwYFtmXx0K #SIDfm #脆弱性情報 https://sid.softek.jp/content/show/40877softek_jp
2021-12-22 07:50:10New Runecast Analyzer 6.0.4 addressing the latest #log4j CVE-2021-45105 and other guideline updates by the Log4j te… https://t.co/pRfpkRMbCM https://twitter.com/i/web/status/1473560294186233858Runecast
2021-12-22 06:50:22窓の杜記事も出てましたね。 https://t.co/DQvFNl8oHC "しかし、その後も「CVE-2021-45105」「CVE-2021-45046」といった問題が相次いで報告されたことから、「Arduino IDE」か… https://t.co/0gBHfxwav6 https://forest.watch.impress.co.jp/docs/news/1376179.html https://twitter.com/i/web/status/1473545889646247939yamadamn
2021-12-22 06:34:41CVE-2021-45105関連も対応終わったなり。iriyak
2021-12-22 05:30:09.@FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105… https://t.co/IUZybt09Gx https://twitter.com/i/web/status/1473524460846206980mdfaridulalam
2021-12-22 04:11:03@thepacketrat @GossiTheDog CVE-2021-45105 was created a week ago, and since then nobody has been able to list a sin… https://t.co/74mLbdi5lD https://twitter.com/i/web/status/1473505612650754057wdormann
2021-12-22 04:10:44#log4j #log4j2 2.3.1 for Java 6 / 2.12.3 for Java 7 がリリースされましたね これで CVE-2021-45105 関連も安心と https://t.co/ODMJ8SrXa9 https://logging.apache.org/log4j/2.x/download.htmlfripper1214
2021-12-22 01:20:18🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/M58AhQKiq9 https://twitter.com/i/web/status/1473463183629238275threatintelctr
2021-12-21 23:14:05CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-21 22:14:58New post from https://t.co/9KYxtdZjkl (K34162192: Apache log4j2 denial-of-service vulnerability CVE-2021-45105) has… https://t.co/mpV26fINAi http://www.sesin.at https://twitter.com/i/web/status/1473414301939642369www_sesin_at
2021-12-21 22:13:42New post from https://t.co/uXvPWJy6tj (K34162192: Apache log4j2 denial-of-service vulnerability CVE-2021-45105) has… https://t.co/l85EyDTEVk http://www.sesin.at https://twitter.com/i/web/status/1473414309099225102WolfgangSesin
2021-12-21 21:30:59Some good #log4j news! The fix for CVE-2021-45105 for Java7 users will be available soon in V2.12.3. Even better… https://t.co/fPDfAntyTz https://twitter.com/i/web/status/1473404574442655744Checkmarx
2021-12-21 20:43:35CVE-2021-45105freeformz
2021-12-21 20:11:10log4j - CVE-2021-45105 https://t.co/EDVhRs47SL #ESRICommunity #ArcGIS https://t.co/SGU5YD3uBh https://bit.ly/3yMQHJPvanuatugis
2021-12-21 18:50:34ثغرة "CVE-2021-45105 - Log4shell". تمكن المخترق من تنفيذ أوامر برمجية خبيثه على الخادم عن بعد بواسطة RCE. بأستغلال… https://t.co/08hTstU2ny https://twitter.com/i/web/status/1473363727349080073hmoud1996
2021-12-21 18:40:26Log4j reactions from the new guy: CVE-2021-4104, no big. CVE-2021-44228, Fuuuuuuuuuuuuu. CVE-2021-45046, Damnit. CVE-2021-45105, Come on.samuelali
2021-12-21 18:00:27Are you still grappling with #Log4j? Update: - You must upgrade to 2.17 to mitigate CVE-2021-45105 if you use Jav… https://t.co/JDcPeWnxKB https://twitter.com/i/web/status/1473348713145843722iCyberFighter
2021-12-21 16:52:19I updated my assessment. CVE-2021-45105: remote DoS (not local) Ref. https://t.co/RTskWZXpcT https://issues.apache.org/jira/browse/LOG4J2-3230?focusedCommentId=17462682&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-17462682nahi
2021-12-21 16:32:36CVE-2021-45105 is the big demoralizer of the holiday season. just annoying enough to create work, not applicable en… https://t.co/sxd3VT3THA https://twitter.com/i/web/status/1473327668468727808uncl3dumby
2021-12-21 16:14:43.@FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105… https://t.co/xd8EBpVksv https://twitter.com/i/web/status/1473323336939802628juliusama
2021-12-21 15:10:46New: updated log4j detection in eComscan 1.4.23. Checks for CVE-2021-45105, CVE-2021-45046 (log4j version below 2… https://t.co/aCgXPyFWey https://twitter.com/i/web/status/1473305322387382272sansecio
2021-12-21 14:23:00[https://t.co/FVk2bWWbek] Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-20… https://t.co/UpE6ZcPBJK https://www.reddit.com/r/netsec https://twitter.com/i/web/status/1473296477350875140zauw_
2021-12-21 13:24:58.@FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105… https://t.co/GdWUWNNXD3 https://twitter.com/i/web/status/1473279803545509888A_Valencia_Gil
2021-12-21 12:13:03@GossiTheDog I have been trying to find any evidence of CVE-2021-45105 terminating the java process but unfortunate… https://t.co/PMwCBxSDXB https://twitter.com/i/web/status/1473262940052766722TheMinz1991
2021-12-21 12:01:02Checkout the latest: #CVE-2021-45105: #DoS via Uncontrolled Recursion in #LOG4J StrSubstitutordigiuniverse
2021-12-21 11:44:14Apache pushed another fix for the DoS vector of the 2nd log4j flaw, which is now tracked as CVE-2021-45105. The nev… https://t.co/nBJGaLEdUS https://twitter.com/i/web/status/1473254491927584772CswWorks
2021-12-21 11:43:10#VMware has not found a valid attack vector to exploit CVE-2021-45105 (log4j before 2.17) in any VMware products… https://t.co/Pqu3CXQCbe https://twitter.com/i/web/status/1473255071840448516cstalhood
2021-12-21 09:10:55🔴NETAPP🔴 Múltiples vulnerabilidades de severidad alta en productos NETAPP: CVE-2021-45105,CVE-2021-44228 Más inf… https://t.co/UzW0jdz0TL https://twitter.com/i/web/status/1473216884518670340GrupoICA_Ciber
2021-12-21 09:10:52.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/kVUrhEyswu https://twitter.com/i/web/status/1473216937211543552jroemer87
2021-12-21 09:00:21🔴APACHE🔴 Múltiples vulnerabilidades de severidad alta en productos APACHE: CVE-2021-45046,CVE-2021-45105,CVE-2021… https://t.co/FCqlCNEwk1 https://twitter.com/i/web/status/1473215481905614854GrupoICA_Ciber
2021-12-21 09:00:14Some good #log4j news! The fix for CVE-2021-45105 for Java7 users will be available soon in V2.12.3. Even better… https://t.co/pAPB1GaKUp https://twitter.com/i/web/status/1473215955971055620DeBenDror
2021-12-21 08:20:04🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/HrbSHb3gQP https://twitter.com/i/web/status/1473206492266332162threatintelctr
2021-12-21 07:30:09.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/YxnFjR6pwE https://twitter.com/i/web/status/1473193329047355395SaysShashank
2021-12-21 07:20:37Log4j Vulnerability CVE-2021-45105: What You Need to Know | WhiteSource https://t.co/NGF9S0YGio https://www.whitesourcesoftware.com/resources/blog/log4j-vulnerability-cve-2021-45105/nuria_imeq
2021-12-21 07:20:24第八話 ジェイのかたち ネットのかたち CVE-2021-44228(CVSS10.0) CVE-2021-45046(CVSS9.0) CVE-2021-45105(CVSS7.5) CVE-2021-4104(CVSS8.1… https://t.co/zpHoYHqJd2 https://twitter.com/i/web/status/1473189869174521862r_o_r_o_r_o_r_o
2021-12-21 07:11:28CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-21 06:51:19🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/tLmBGZnH6K https://twitter.com/i/web/status/1473183843314188290threatintelctr
2021-12-21 05:40:30JNDI Lookup 使わずに Context Lookup だけでいけるのか / 1件のコメント https://t.co/oIQkvWEWIr “CVE-2021-45105: New DoS Vulnerability F… https://t.co/ZRJ0g3tp5L https://b.hatena.ne.jp/entry/s/www.netskope.com/blog/cve-2021-45105-new-dos-vulnerability-found-in-apache-log4j#utm_campaign=bookmark_share&utm_content=www.netskope.com&utm_medium=social&utm_source=twitter&utm_term=%E3%83%86%E3%82%AF%E3%83%8E%E3%83%AD%E3%82%B8%E3%83%BC%20security https://twitter.com/i/web/status/1473166298339508226Notusotu
2021-12-21 04:30:05#FortiGuardLabs Threat Signal Report: Log4j 2.17.0 Released In Response to New Log4j Vulnerability (CVE-2021-45105)… https://t.co/41ScXF5SeC https://twitter.com/i/web/status/1473147976415645704FortiGuardLabs
2021-12-21 04:20:21.@Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/440AOOJSrh https://twitter.com/i/web/status/1473144054284120066saket_more
2021-12-21 03:52:50今年が終わる 仕事は終わらぬ log4j2のCVE-2021-45105対応パッケージを早よ出せ、某ベンダー!milmil0003
2021-12-21 03:25:21Yet another #Log4j vulnerability was discovered on Saturday: CVE-2021-45105 with a CVSS score of 7.5. It allows DoS… https://t.co/jLK3OX9GLs https://twitter.com/i/web/status/1473130664748896259jbalexander121
2021-12-21 03:14:12#CVE-2021-45105 Log4j2 DoS , the infinite recursion in lookup evaluation makes it crashed. ${${::-${::-$${::-j}}}}… https://t.co/pqOxZq0wfq https://twitter.com/i/web/status/1473127256796975104pyn3rd
2021-12-21 02:13:51Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-21 02:11:20log4j 脆弱性関連 荒れてません?・・・ CVE-2021-44228 CVE-2021-45105 CVE-2021-45046 まだありそう・・・Msuta555
2021-12-21 01:43:17Log4j Vulnerability CVE-2021-45105: What You Need to Know https://t.co/PsVROhOiLQ https://t.co/K5mhC5FR3B https://ift.tt/3pdrTHG https://ift.tt/3ebChthbuaqbot
2021-12-21 01:00:15People have also been wrapped around the axle when it comes to CVE-2021-45105, too. https://t.co/E0gen3YW2N https://twitter.com/malwaretechblog/status/1473089804434755585plankers
2021-12-21 00:00:15The latest update for #WhiteSource includes "#Log4j Vulnerability CVE-2021-45105: What You Need to Know" and "Log4j… https://t.co/5njZ7IycjQ https://twitter.com/i/web/status/1473080479305842692opsmatters_uk
2021-12-20 23:50:19Another update has been released – NoTouch Center 4.5.246 with Log4j 2.17.0 that also addresses CVE-2021-45105. We… https://t.co/qwSTsLzuja https://twitter.com/i/web/status/1473076333018243074stratodesk
2021-12-20 22:20:12Akamai found and responsibly reported an additional DoS #vulnerability, which was assigned as CVE-2021-45105.… https://t.co/msOJXkFK5C https://twitter.com/i/web/status/1473054364596154371Akamai
2021-12-20 21:11:03Another #Log4j vulnerability was discovered on Saturday: CVE-2021-45105 with a CVSS score of 7.5. It allows DOS in… https://t.co/5JqBCva0ed https://twitter.com/i/web/status/1473037300745617414kimfosterphoto
2021-12-20 19:50:42@Cloudflare Does your ruleset protect against CVE-2021-45105? #log4jsecurity_bloke
2021-12-20 19:41:14New post from https://t.co/uXvPWJy6tj (CVE-2021-45105 (cloud_manager, debian_linux, log4j)) has been published on https://t.co/pAHdYu1QK3 http://www.sesin.at https://www.sesin.at/2021/12/20/cve-2021-45105-cloud_manager-debian_linux-log4j/WolfgangSesin
2021-12-20 19:41:08New post from https://t.co/9KYxtdZjkl (CVE-2021-45105 (cloud_manager, debian_linux, log4j)) has been published on https://t.co/lzWIny1PNN http://www.sesin.at https://www.sesin.at/2021/12/20/cve-2021-45105-cloud_manager-debian_linux-log4j/www_sesin_at
2021-12-20 19:00:24⚠️UPDATED Log4j PSIRT Inclusive of CVE-2021-44228 & CVE-2021-45046 Still Investigating CVE-2021-45105… https://t.co/HXLdlNLaoj https://twitter.com/i/web/status/1473004425371336711Cisco_East_SE
2021-12-20 18:50:55🚨 NEW: CVE-2021-45105 🚨 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from un… https://t.co/advqJY14QD https://twitter.com/i/web/status/1473002649016487936threatintelctr
2021-12-20 18:30:53CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-20 17:38:55A third vulnerability in #Apache #Log4j was discovered (CVE-2021-45105), which could lead to DoS attacks.… https://t.co/WUmYsFpCeb https://twitter.com/i/web/status/1472980291623038978GustavoPalazolo
2021-12-20 16:33:02Worth reiterating that the latest #Log4j DoS vulnerability (CVE-2021-45105) only applies to non-default logging con… https://t.co/H16qkuriDQ https://twitter.com/i/web/status/1472965108976529413audrastreetman
2021-12-20 15:45:06Log4j 2.16に対して新たな脆弱性(CVE-2021-45105)が報告されていますので、ver2.17へのお早めの更新が推奨されます。 log4shell一連の内容に比べると危険度は一段下がる模様ですが、この脆弱性も十分脅… https://t.co/s8AKNFDlEs https://twitter.com/i/web/status/1472952604443680770NomiwKanade01
2021-12-20 14:25:20「Log4j」に新たな脆弱性、深刻度は「High」 バージョン2.17.0へのアップデートを呼び掛け https://t.co/MsYxjPDgLb >この脆弱性に割り振られたCVE番号は「CVE-2021-45105」で、深刻度は「High」。 https://www.itmedia.co.jp/news/articles/2112/20/news135.htmlsyouta2
2021-12-20 14:23:59CVE-2021-45105: DENIAL OF SERVICE VIA UNCONTROLLED RECURSION IN #LOG4J STRSUBSTITUTOR https://t.co/7SeuGCFCcx @thezdi https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutor100HnoMeuNome
2021-12-20 13:57:19CVE-2021-45105 in Apache Log4j ➡️CVSS score: 5.3 https://t.co/5A7QerPlVo https://www.zerodayinitiative.com/advisories/ZDI-21-1541/LindseyOD123
2021-12-20 13:44:32Now that another string formatting DoS vulnerability in java (CVE-2021-45105) is in the news, a reminder: Passing u… https://t.co/3os7Kth1cu https://twitter.com/i/web/status/1472922394973155330WouterCoekaerts
2021-12-20 12:40:20mendelson converterIDE 2020 b291 released Fix for the Log4j security problem (CVE-2021-45105) More at: https://t.co/Un0nR4jIR2 https://mendelson-e-c.com/node/27366mendelson
2021-12-20 12:31:05@JensGleichmann Hi Jens, XSA Cockpit 1.1.24 is based on 2.16.0 and therefore only vulnerable for CVE-2021-45105. Al… https://t.co/2TrpaJdIqS https://twitter.com/i/web/status/1472902895393808385__maestro__duh
2021-12-20 12:02:38Log4j Update Patches New Vulnerability That Allows DoS Attacks - CVE-2021-45105 https://t.co/18iMpmbFan https://www.securityweek.com/log4j-update-patches-new-vulnerability-allows-dos-attacksSecurityWeek
2021-12-20 12:01:15SecurityWeek: Log4j Update Patches New Vulnerability That Allows DoS Attacks - CVE-2021-45105 https://t.co/MKS3w98wZj https://www.securityweek.com/log4j-update-patches-new-vulnerability-allows-dos-attacksMrsYisWhy
2021-12-20 11:54:36Apache Log4j modules now have 3 vulnerabilities associated with them - CVE-2021-44228, CVE-2021-45105, & CVE-2021-4… https://t.co/nCT1lOEJCT https://twitter.com/i/web/status/1472894996688916480CswWorks
2021-12-20 11:20:30В библиотеке Log4j 2 выявлена ещё одна уязвимость (CVE-2021-45105), которая в отличие от двух прошлых проблем, отне… https://t.co/4bZCWWyUV5 https://twitter.com/i/web/status/1472888847218401281ProHoster_info
2021-12-20 11:01:54jpcertによると、log4jの脆弱性は先述のCVE-2021-44228の他にも CVE-2021-45046とCVE-2021-45105の2つの脆弱性もあるみたい。 全ソフトウェア(一部ハードウェアも)で影響有無を確認する… https://t.co/1ptMSezrQX https://twitter.com/i/web/status/1472882380444954625neru01029390
2021-12-20 10:10:31Apache Log4j 2、新たに発見された脆弱性を修正する3番目のパッチリリース | TECH+ https://t.co/K1EhkQsNGB “CVE-2021-45105は2.0-beta9から2.16.0までのすべて… https://t.co/V5NVWFZVCs https://news.mynavi.jp/techplus/article/20211220-2233495/ https://twitter.com/i/web/status/1472869496029577225catnap707
2021-12-20 10:00:20Another #Log4j vulnerability was discovered on Saturday: CVE-2021-45105 having a CVSS score of 7.5. It allows DOS i… https://t.co/3jv4nuusVq https://twitter.com/i/web/status/1472866366130733057mrericgold
2021-12-20 09:45:29Third patch for Apache Log4j. CVE-2021-45105 has been found, present in versions 2.0 thorough 2.16 The fix download… https://t.co/ocLIXmRpnu https://twitter.com/i/web/status/1472862331482877962Info_Sec_Adam
2021-12-20 09:31:33I don't think u need to worry about the two vulnerabilities CVE-2021-45046 /CVE-2021-45105, just like the LibSSH CV… https://t.co/ttC0kEeN7x https://twitter.com/i/web/status/147286087902077337680vul
2021-12-20 09:23:50[対策あり]Apache Log4jで新たな脆弱性!一定の条件でDoS攻撃が可能に(CVE-2021-45105) https://t.co/dAKe5RtUNS https://a-zs.net/apache_log4j_vulnerability_3/A_zs_Blog
2021-12-20 09:21:42mendelson AS4 2021 b267 released Fix for the Log4j security problem (CVE-2021-45105) More at: https://t.co/aON3ChaACP https://mendelson-e-c.com/node/27365mendelson
2021-12-20 09:21:22mendelson OFTP2 2021 b329 released Fix for the Log4j security problem (CVE-2021-45105) More at: https://t.co/8qnYMCDH45 https://mendelson-e-c.com/node/27364mendelson
2021-12-20 09:01:32https://t.co/50gEiFZadJ Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-2021-45046) https://ift.tt/3pdMPhYreddit4devs
2021-12-20 09:01:16Apache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability [CVE-2021-45105] https://t.co/xltwuH36o1 https://www.systemtek.co.uk/2021/12/apache-log4j-strsubstitutor-uncontrolled-recursion-denial-of-service-vulnerability-cve-2021-45105/SystemTek_UK
2021-12-20 09:00:55Apache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability [CVE-2021-45105] https://t.co/JQ6NeLjre4 https://www.systemtek.co.uk/2021/12/apache-log4j-strsubstitutor-uncontrolled-recursion-denial-of-service-vulnerability-cve-2021-45105/6townstechteam
2021-12-20 08:54:17Apache Log4j Security Vulnerabilities Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always… https://t.co/CAJ94xd1O5 https://twitter.com/i/web/status/1472849445138178051ZorroXTN
2021-12-20 08:48:09Het houdt niet op, niet vanzelf. 2.17 is inmiddels al beschikbaar. #log4j CVE-2021-45105. https://t.co/bCS5R7aGNF https://twitter.com/vxunderground/status/1471943986705281029tomvdl
2021-12-20 08:41:46mendelson AS2 2021 b534 released Fix for the Log4j security problem (CVE-2021-45105) More at: https://t.co/sQTaLorgF1 https://mendelson-e-c.com/node/27363mendelson
2021-12-20 08:30:43we have determined that Tableau products are not affected by CVE-2021-45105. の文言が消えているじゃないですか~。orz 結局、影響あるんかい。 https://t.co/gUD5o54skm https://www.tableau.com/about/blog/2021/12/update-apache-log4j2-vulnerability?s=09nohoyan
2021-12-20 08:22:37Third #Log4j Vulnerability Published (#CVE-2021-45105) https://t.co/ZPi0QrmHLd https://t.co/yexsiQgnEI https://www.signalscorps.com/blog/2021/third-log4j-cve-published/SignalsCorps
2021-12-20 08:17:29Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-2021-45046)… https://t.co/qYlrvvKMB8 https://twitter.com/i/web/status/1472839283543183363beingsheerazali
2021-12-20 08:13:29eyesray : 한동안 시끄럽겠지? @,,@ [긴급] 로그4j 신규 취약점 ‘CVE-2021-45105’과 패치 ‘Log4j 2.17.0’ 나와 https://t.co/FMyju9Bswy http://www.boannews.com/media/view.asp?idx=103443eyesray
2021-12-20 08:11:18さくらのクラウドのお知らせにCVE-2021-45105について追記しました https://t.co/Dw0wa72d5m https://cloud-news.sakura.ad.jp/2021/12/13/apache-log4j-security-vulnerabilities/kazeburo
2021-12-20 08:10:57r/sysadmin - #Log4j - New vulnerability in 2.1.16, DOS (CVSS 7.5), CVE-2021-45105 https://t.co/MEke1IqzeU < using n… https://t.co/91ID3hjmSG https://www.reddit.com/r/sysadmin/comments/rj36ng/log4j_new_vulnerability_in_2116_dos_cvss_75/ https://twitter.com/i/web/status/1472841453994917890domineefh
2021-12-20 08:00:17Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-2021-45046) via /r/netsec… https://t.co/6s7RHutFwz https://twitter.com/i/web/status/1472839054207209476CybrXx0
2021-12-20 08:00:09Third #Log4j Vulnerability Published (#CVE-2021-45105) https://t.co/9cHaldjQvM https://t.co/1kavemyVca https://app.vulmatch.com/cve/detail/CVE-2021-45105SignalsCorps
2021-12-20 07:52:30Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-2021-45046) https://t.co/dMkXOljb24 https://www.whitesourcesoftware.com/resources/blog/log4j-vulnerability-cve-2021-45105/_r_netsec
2021-12-20 07:50:45New post: "Log4j Vulnerability CVE-2021-45105: What You Need to Know (and how it differs from CVE-2021-45046)" https://t.co/rWntav18FG https://ift.tt/3FkvrhaMyinfosecfeed
2021-12-20 07:40:27Citrix Security Advisory for Apache CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-20 07:24:26CVE-2021-45105tetsu3594
2021-12-20 07:14:26[긴급] 로그4j 신규 취약점 ‘CVE-2021-45105’과 패치 ‘Log4j 2.17.0’ 나와 https://t.co/5f2OYjdfEg http://www.boannews.com/media/view.asp?idx=103443Lysithea_ZX
2021-12-20 07:09:54Apache Log4j Security Vulnerabilities Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always… https://t.co/zUjbqeBlIv https://twitter.com/i/web/status/1472784721956462594bsubra
2021-12-20 06:50:30Apache Log4j Security Vulnerabilities Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always… https://t.co/zUjbqeBlIv https://twitter.com/i/web/status/1472784721956462594bsubra
2021-12-20 06:23:00@Bugcrowd 1: Log4j RCE CVE-2021-44228 & Log4j RCE CVE-2021-45046 (we wanted all the attention) 2: Log4j CVE-2021-45105 DDoS (hi)BlankJinn
2021-12-20 06:13:25Apache Log4jの任意のコード実行の脆弱性について、新たな脆弱性が発見されCVE-2021-45105として公開されました。 #JobScheduler 対応策を公開しましたのでご確認ください。 https://t.co/HfLjRhBAir https://www.ossl.co.jp/2021/12/20/%e3%80%90%e7%b6%9a%e3%80%85%e5%a0%b1%e3%80%91apache-log4j%e3%81%ae%e4%bb%bb%e6%84%8f%e3%81%ae%e3%82%b3%e3%83%bc%e3%83%89%e5%ae%9f%e8%a1%8c%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7%ef%bc%88cve-2021-45105/satoruf
2021-12-20 05:20:11CVE-2021-45105 (CVSS score: 7.5) - A denial-of-service vulnerability affecting Log4j versions from 2.0-beta9 to 2.1… https://t.co/LdWep6ZY1A https://twitter.com/i/web/status/1472798805711982597h4md44n
2021-12-20 05:10:2212/19でリリースされたバージョンで、CVE-2021-44228とCVE-2021-45046が対応されているlog4j 2.16 が入ったバージョンがリリースされた。これで一旦一安心かな?CVE-2021-45105がやっぱ… https://t.co/6AxkhWCbCN https://twitter.com/i/web/status/1472794159140708352nohoyan
2021-12-20 05:01:09Apache Log4jの新たな脆弱性 CVE-2021-45105 が公開されました。攻撃者の悪意のある入力データなどにより、サービス妨害(DoS)を引き起こす可能性があります。この脆弱性の発見には、Akamai の日本のLog… https://t.co/6zGf0aMajr https://twitter.com/i/web/status/1472793895478120449akamai_jp
2021-12-20 02:22:53@johtani CVE-2021-45105は把握しているのですが、Context Lookupを使っていなければ、良いのかなと。利用者が勝手に使うリスクを考えて上げたのかもしれませんけど。Fessはそれを使う人がいないから、まぁ大丈夫かとのんびりしていたので…。shinsuke_sugaya
2021-12-20 02:11:47Debian GNU/Linux の apache-log4j2 にサービスを妨害される問題 (CVE-2021-45105) [40840] https://t.co/aOvTZ7P0I9 #SIDfm #脆弱性情報 https://sid.softek.jp/content/show/40840softek_jp
2021-12-20 01:53:39CVE-2021-45105は、シャープを挟むとルックアップしてしまう件とは別か?yasakappe
2021-12-20 01:40:19Log4j 2.16.0にもDoS脆弱性が見つかっております。CVE-2021-45105 2.17.0へのアップグレード及びSpringなどLog4jを使用しているライブラリを使用している場合は設定変更を。tsuruo5388
2021-12-20 01:11:33CVE-2021-45105 に関する追記も準備..kazeburo
2021-12-20 00:21:47Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/OJTBRd6W0S https://twitter.com/i/web/status/1472722414878568451YourAnonRiots
2021-12-20 00:10:29CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/AtlHebrawb ”non-J… https://t.co/MEYKMIN3bH https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutor https://twitter.com/i/web/status/1472718771144261632kaito834
2021-12-20 00:10:26Fixed in Log4j 2.17.0 (Java 8) https://t.co/T6BejtzWlm CVE-2021-45105: Apache Log4j2 does not always protect from i… https://t.co/gzVnYRPCzf https://logging.apache.org/log4j/2.x/security.html#Fixed_in_Log4j_2.17.0_.28Java_8.29 https://twitter.com/i/web/status/1472718772700332032kaito834
2021-12-19 23:33:15IT Risk: Apache.log4j2に複数の脆弱性(CVE増える) -2/2 CVE-2021-45105 CVE-2021-45046 CVE-2021-44228management_sun
2021-12-19 23:30:41CVE-2021-45105 Apache Log4j2 attack code Attack IP: 2.57.121.36 (AbuseIPDB 100%) Attack Code: User-Agent: ${${::-j… https://t.co/c2vc8dOLvv https://twitter.com/i/web/status/1472710608227545089JinOki_Security
2021-12-19 23:12:39CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-19 22:30:11Is it the 3rd/4th/5th ? CVE-2021-45105 #Log4Shell #log4j https://t.co/qbDbWcyV1z https://www.whitesourcesoftware.com/resources/blog/log4j-vulnerability-cve-2021-45105/danielelkabes
2021-12-19 21:03:24#log4j 2.16.0 and lower is affected by another vulnerability : CVE-2021-45105 It has a CVSS rate of 7,5. It is fixe… https://t.co/XIdY1M3Vr1 https://twitter.com/i/web/status/1472672457895075848JensGleichmann
2021-12-19 21:02:40#Log4Shell , anyone have news of Log4j 2.12.3? I see NVD has listed it as a remediation for CVE-2021-45105; but still no update availableLC31407573
2021-12-19 21:01:14A new advisory has been published: "SSA-501673: Apache Log4j Denial of Service Vulnerability (CVE-2021-45105) - Imp… https://t.co/MxBGit3hZ8 https://twitter.com/i/web/status/1472672978496368644ProductCERT
2021-12-19 20:30:51[긴급] 로그4j 신규 취약점 ‘CVE-2021-45105’과 패치 ‘Log4j 2.17.0’ 나와 https://t.co/tYsJKtSpV7 http://www.boannews.com/media/view.asp?idx=103443boannews
2021-12-19 19:40:52@TrullLaLa @Graf_Icker Der 44228 ist schon gefixt, es geht um CVE-2021-45105, siehe Link.saschakaupp
2021-12-19 18:40:49Zero Day Initiative — CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/LTgMtSmS2c https://www.thezdi.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutorSecRecon
2021-12-19 17:51:26"Tracked as CVE-2021-45105, and scored 'High' (7.5) on the CVSS scale, the DoS flaw exists as log4j 2.16 "does not… https://t.co/LlTtprrleY https://twitter.com/i/web/status/1472624029064384512kaynemcgladrey
2021-12-19 17:31:05CVE-2021-45105 is overhyped. I know the grade is based on worst case scenario, but that scenario is rare. Not wort… https://t.co/hESs6MN8YD https://twitter.com/i/web/status/1472618420046909457PseudoRandomOne
2021-12-19 17:06:48CVE-2021-45105 Apache Log4j2 versions https://t.co/eUmIsAx17Q https://afaghhosting.net/blog/?p=19402afaghhosting
2021-12-19 16:40:50CVE-2021-45105 Apache Log4j2 versions https://t.co/eUmIsAx17Q https://afaghhosting.net/blog/?p=19402afaghhosting
2021-12-19 15:21:52Ah here we go again: Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5)Buffer_NULL
2021-12-19 15:11:24Apache has released version 2.17.0 of the patch for #log4j Apache said version 2.16 didn't mitigate CVE-2021-45105,… https://t.co/wnI2nRD8Yl https://twitter.com/i/web/status/1472583886123069443Qr3141
2021-12-19 15:02:08Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in loo… https://t.co/pMr8YMEUv3 https://twitter.com/i/web/status/1472580748624420867david_das_neves
2021-12-19 14:50:20UPDATES: Get details on all #log4j updates from our researchers, including details on the new CVE-2021-45105.… https://t.co/bTENPAv5LT https://twitter.com/i/web/status/1472579936061849603Checkmarx
2021-12-19 14:20:27っと思ったら、本当に偶然だが回避できてたわ CVE-2021-45105 Context Map Lookup は使ってませんでしたわkiriumi
2021-12-19 14:11:25ここ最近のlog4j2のCVSS Score; - CVE-2021-44228: 10.0 - CVE-2021-45046: 9.0 - CVE-2021-45105: 7.5 Java8にして、2.17.0にして年越しましょう、とうことでFAnoguchis
2021-12-19 14:06:41[Blog Post] #Log4J 2.17.0 is published and fixes CVE-2021-45105: https://t.co/zQsLEnMzdC #vulnerabilitymanagement #apache #security https://original-network.com/log4j-2-17-0-is-published/c_glemot
2021-12-19 14:00:48先日話題になったLog4j2のRCE(CVE-2021-4428)とはまた異なる脆弱性があったと耳にした(CVE-2021-45105)ので試したら、 これまた簡単にDoS攻撃を仕掛けれますやん またバージョンを上げる作業せなアカンですか…kiriumi
2021-12-19 14:00:30Top 3 trending CVEs on Twitter Past 24 hrs: CVE-2021-45046: 4.2M (audience size) CVE-2021-45105: 4.1M CVE-2021-442… https://t.co/DLAgCBy9at https://twitter.com/i/web/status/1472567404593139715CVEtrends
2021-12-19 13:57:58And with CVE-2021-45105, Log4j CVE’s and patches are starting to have a 12 days of Christmas  vibe.frinkmahii
2021-12-19 13:42:41Zero Day Initiative &mdash; CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor - https://t.co/KRD8ehHC8M https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutormoton
2021-12-19 12:31:37Log4j취약점이 다시 보고 되었네요 Log4j 2.17.0(Java 8)에서 수정됨 CVE-2021-45105 : 심각성높은 점수7.5 영향을 받는 버전2.0-beta9부터 2.16.0까지의 모든 버전설명 https://t.co/FUYqZDvelC https://logging.apache.org/log4j/2.x/security.htmlSoonPyoJ
2021-12-19 11:50:57新たに「CVE-2021-45105」ですか… これで3回目… 外からアクセスされるものは警戒すべきだけど、 社内システムで外からアクセスされないものは、 様子見したほうが精神衛生上いいんじゃねーの・・・・ Log4j – Ap… https://t.co/vXJeuvzuwI https://twitter.com/i/web/status/1472533753046376455Surarin71
2021-12-19 11:20:36CVE-2021-45105 - Apache / Log4j - Uncontrolled resource consumption - https://t.co/xmsdTlYhK6 #Uncategorized #cybersecurity https://www.redpacketsecurity.com/cve-2021-45105-apache-log4j-uncontrolled-resource-consumption/RedPacketSec
2021-12-19 10:54:46Zero Day Initiative — CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/db5LAcLgYo https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutorohhara_shiojiri
2021-12-19 10:50:21CVE-2021-45105で公式でてた。影響なし。月曜日から聞かれても助かるわ~。CVE-2021-44228とCVE-2021-45046用のKBはlog4jの2.16.0用に書き換わってるから注意! we have dete… https://t.co/H1Y404Jb6O https://twitter.com/i/web/status/1472519580480577536nohoyan
2021-12-19 10:41:06うひー。CVE-2021-45105が新しく…そしてLog4j 2.17.0もでている。TableauのKBを見たら、2.16のお話で書き換わってるけれども、これもまた更新されそう。2.17.0で置き換えてもええ?という質問も着そ… https://t.co/4moF8kW7v1 https://twitter.com/i/web/status/1472516693490827264nohoyan
2021-12-19 09:20:48@qualys this is incorrect. CVE-2021-45105 is on a Denial of Service vulnerability with CVSSv3 of 7.5 and not 9.0 or… https://t.co/wMfSgHx354 https://twitter.com/i/web/status/1472496259831324678_GrimSqueaker_
2021-12-19 09:00:22https://t.co/27zZiwNqfK Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://ift.tt/3FbQ3YFreddit4devs
2021-12-19 08:51:03Updating #Log4j version to 2.17.0 is recommended. As to new DoS vulnerability, CVE-2021-45105, the CVSS score is 7… https://t.co/oWuRPOToVM https://twitter.com/i/web/status/1472486773817507842scqrinc
2021-12-19 08:30:43@QAInsights JMeter is not concerned by this CVE-2021-45105 we don’t use such fragile patterns in the config. Also J… https://t.co/lAGzdurJ69 https://twitter.com/i/web/status/1472480771709538307philmdot
2021-12-19 08:11:11CVE-2021-45105 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from uncontrolle… https://t.co/XrVXDtFNct https://twitter.com/i/web/status/1472479259658698757threatmeter
2021-12-19 08:04:27log4jのCVE、12/19 16時(JST)現在、最新のは、CVE-2021-45105ですかね。。 https://t.co/3TBwXptDsa https://nvd.nist.gov/vuln/detail/CVE-2021-45105ToshihiroS
2021-12-19 08:01:17Wallarm Research Team has already verified that the Wallarm attack engine can detect CVE-2021-45105 (DDoS via Log4j… https://t.co/ly8us5alvi https://twitter.com/i/web/status/1472476431074529282wallarm
2021-12-19 07:41:09@miettal 失礼しました。こちらですねCVE-2021-45105ToshihiroS
2021-12-19 07:20:17log4j・・まだ続くのか。 Log4j 2.17.0がリリース - Log4jの3番目のDoS脆弱性CVE-2021-45105に対処 https://t.co/BhL5OaIZ0r https://softantenna.com/blog/log4j-2-17-0/yasuym1
2021-12-19 07:15:56Log4j version 2.17.0 fixes a new problem #CVE-2021-45105 DoS vuln (CVSS score of 7.5) https://t.co/su1ReDBmBS https://logging.apache.org/log4j/2.x/security.htmlWilfridBlanc
2021-12-19 07:14:39CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-19 07:13:27先日リリースされた log4j 2.17.0 で修正された CVE-2021-45105 の詳細な解説記事: https://t.co/Rk9uUP0AHQ https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutormimura1133
2021-12-19 07:02:13#log4j - CVE-2021-44228 (CVSS score: 10.0) - CVE-2021-45046 (CVSS score: 9.0) - CVE-2021-45105 (CVSS score: 7.5)… https://t.co/HXJvNRnp2I https://twitter.com/i/web/status/1472460089340530688cyberg0100
2021-12-19 06:51:07Log4j2の3つめの脆弱性であるCVE-2021-45105はPaperMCとVelocityで修正版がリリースされているので更新しましょうnerrog_blog
2021-12-19 06:40:32CVE-2021-45105 #Log4j2 DOS Poc ${${::-${::-$${::-$}}}} https://t.co/tVCSNA8JID Android: apps have VM_MAYWRITE ac… https://t.co/PQWqAU2T42 https://github.com/cckuailong/Log4j_dos_CVE-2021-45105 https://twitter.com/i/web/status/1472455892503306243hack_git
2021-12-19 06:31:32NVD - CVE-2021-45105 https://t.co/KuVK3IIKOL https://nvd.nist.gov/vuln/detail/CVE-2021-45105kunst1080
2021-12-19 05:50:24Zero Day Initiative — CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/LPxKaIMBS9 https://www.zerodayinitiative.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutorvichargrave
2021-12-19 05:40:26Significant Cyber Event Update on Log4j - CVE-2021-45105 now recommends updating to 2.17.0 if running Java version… https://t.co/tJmuAyJtvS https://twitter.com/i/web/status/1472440254409936896deepwatch_sec
2021-12-19 04:54:06CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/1iJR8LiIKt https://t.co/60RTfKkhAP https://ift.tt/32i38kM https://ift.tt/3pa533Ibuaqbot
2021-12-19 04:41:07Just when you thought, 2.16.0 made you safe… now comes CVE-2021-45105 (7.5 DoS). Now there’s 2.17.0 https://t.co/XCTUdsHleJ https://osgonline.wordpress.com/2021/12/18/just-when-you-thought-2-16-0-made-you-safe-now-comes-cve-2021-45105-7-5-dos-now-theres-2-17-0/JoeLouisDetroit
2021-12-19 04:37:18Ah yes, weekends. Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/j2TFuWiYhY https://www.reddit.com/r/programming/comments/rj48ol/log4j_2170_released_with_a_fix_of_dos/saihemanth9019
2021-12-19 04:21:51Ah yes, weekends. Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/j2TFuWiYhY https://www.reddit.com/r/programming/comments/rj48ol/log4j_2170_released_with_a_fix_of_dos/saihemanth9019
2021-12-19 04:14:08CVE-2021-45105: Apache Log4j2 Denial of Service Vulnerability Alert https://t.co/MzfUdzSo88 http://dlvr.it/SFfHHPAcooEdi
2021-12-19 04:03:49lteo@ modified security/ghidra: Bump Ghidra's log4j jar files to 2.17.0 which addresses CVE-2021-45105OpenBSD_ports
2021-12-19 04:03:34OPENBSD_7_0 lteo@ modified security/ghidra: Bump Ghidra's log4j jar files to 2.17.0 which addresses CVE-2021-45105OpenBSD_ports
2021-12-19 04:03:19OPENBSD_7_0 lteo@ modified security/ghidra: Bump Ghidra's log4j jar files to 2.17.0 which addresses CVE-2021-45105OpenBSD_stable
2021-12-19 04:02:39log4j気がついたら三つ目の脆弱性が。 CVE-2021-45105 https://t.co/lwIpsXb8gw https://nvd.nist.gov/vuln/detail/CVE-2021-45105qyouzoom
2021-12-19 04:01:40CVE-2021-45105: Apache Log4j2 Denial of Service Vulnerability Alert https://t.co/njm9QsNypj #opensource #infosec #security #pentest https://securityonline.info/cve-2021-45105-apache-log4j2/the_yellow_fall
2021-12-19 03:31:22次は2.17.0になったか。 Important: Security Vulnerability CVE-2021-45105 Log4j – Apache Log4j 2 https://t.co/xcRVAWVY22 https://logging.apache.org/log4j/2.x/bam6o0
2021-12-19 02:13:15Looks like this got CVE-2021-45105 assigned, and log4j-2.17.0 addresses that. https://t.co/ic4GWrr504 It’s almost… https://t.co/tq1x5D2IYy https://nvd.nist.gov/vuln/detail/CVE-2021-45105 https://twitter.com/i/web/status/1472386855807209477jschauma
2021-12-19 02:11:27log4j、log4shellがかなりヤバイ脆弱性だったこともあり、log4j関連で脆弱性が出たらすぐ話題になるのSNSの良い点だと思います(?) 新しい脆弱性がまた出たらしいけど(CVE-2021-45105)riikunn_ryo
2021-12-19 02:10:59Log4j 2.17.0がリリース - Log4jの3番目のDoS脆弱性CVE-2021-45105に対処 https://t.co/3BRFMqARzW https://softantenna.com/blog/log4j-2-17-0/notintelli_inc
2021-12-19 02:01:18【2021/12/19 10:30追記】CVE-2021-42550(logbackの脆弱性), CVE-2021-45105(無限ループのDoS脆弱性)の情報を追記しました。 #sios_tech #security… https://t.co/yEH7GDOdWx https://twitter.com/i/web/status/1472384938138042368omokazuki
2021-12-19 02:00:54【2021/12/19 10:30追記】CVE-2021-42550(logbackの脆弱性), CVE-2021-45105(無限ループのDoS脆弱性)の情報を追記しました。 #sios_tech #security… https://t.co/67i6qApWpy https://twitter.com/i/web/status/1472385116110745604omokazuki
2021-12-19 01:51:56Log4j 2.17.0がリリース - Log4jの3番目のDoS脆弱性CVE-2021-45105に対処 https://t.co/25UhVAVShc https://t.co/OZ48MWrXUs https://softantenna.com/blog/log4j-2-17-0/softantenna
2021-12-19 01:40:07Please send pizza and beer to your geeks! CVE-2021-45105 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 didn't pr… https://t.co/hw7XbUaEs9 https://twitter.com/i/web/status/1472380839354937349garywright2
2021-12-19 01:30:53CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation: Posted by Matt… https://t.co/1fTUsYrbQg https://twitter.com/i/web/status/1472377651025219588oss_security
2021-12-19 01:00:33CVE-2021-45105 の脆弱性は log4j-core にだけ存在。2.17.0 で解決。log4j-api は問題なし。 "Applications using only the log4j-api JAR file… https://t.co/ogAXjLedFX https://twitter.com/i/web/status/1472370198896574467nilab
2021-12-19 00:50:13🎄 for day 18 of log4j advent, a new denial-of-service vulnerability (CVE-2021-45105) and a new release 2.17.0 dropp… https://t.co/6cHhieSG5f https://twitter.com/i/web/status/1472368401217638401eed3si9n
2021-12-19 00:40:47CVE-2021-45105, a third #log4j vulnerability. I'm pass getting angry and am at the point of just internally screami… https://t.co/9japH2mmrE https://twitter.com/i/web/status/1472363932694167553kairichan6
2021-12-19 00:10:45🎉 Log4j 2.17 has been released. CVE-2021-45105 has been fixed in this release. We have to wait whether JMeter will… https://t.co/UQ9aHqt469 https://twitter.com/i/web/status/1472357125720612869QAInsights
2021-12-19 00:10:43About CVE-2021-45105 =============== Apache Log4j2 versions 2.0-alpha1 through 2.16.0 did not protect from uncont… https://t.co/rhXZjpQecQ https://twitter.com/i/web/status/1472357127557689347QAInsights
2021-12-18 23:50:25And here we go again... Version 2.17 to fix CVE-2021-45105. It's similar to CVE-2021-45046, but a DoS impact... Hig… https://t.co/Q5Q3iiiGsC https://twitter.com/i/web/status/1472352077556895745dibbesnl
2021-12-18 23:50:09Log4j2、どこまで続くんや https://t.co/FyvT8PQo1F CVE-2021-45105 Apache Log4j2 does not always protect from infinite recursio… https://t.co/NazvSUBLZD https://logging.apache.org/log4j/2.x/security.html https://twitter.com/i/web/status/1472352923044950017shujisado
2021-12-18 23:10:11既にこれで3つめなんだよなぁ。 >CVE-2021-45105として追跡されるlog4j 2.16の「高」重大度のサービス拒否(DoS)脆弱性を修正するために、1週間で3番目のバージョン(バージョン2.17.0)をリリース https://t.co/UGCndUrchc https://twitter.com/ka0com/status/1472341035665833989ka0com
2021-12-18 23:00:31Un jour, une mise à jour log4j. La version 2.17 corrige la CVE-2021-45105. Cette vulnérabilité repose sur l’absence… https://t.co/6nRSH39UnU https://twitter.com/i/web/status/1472338541644599302rfelten2
2021-12-18 23:00:15CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor - https://t.co/KIz3pv1v5t https://www.thezdi.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutorka0com
2021-12-18 22:40:16Citrix Security Advisory for Apache CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 | https://t.co/A6eXrAWP9a https://support.citrix.com/article/CTX335705ThomasPreischl
2021-12-18 22:30:32CVE-2021-45105 seems exaggerated - true CVSS should be 3.7. Attack on 2.15/2.16 has same prerequisites as CVE-2021-… https://t.co/qNyXrnnwO5 https://twitter.com/i/web/status/1472331370391392260jfrog
2021-12-18 21:50:08Update posted to #JamfNation concerning the log4j 2.17 patch: “We are aware of CVE-2021-45105 that was remediated… https://t.co/PYlDHAuLYH https://twitter.com/i/web/status/1472323017837617161bryson3gps
2021-12-18 21:40:15CVE-2021-45105: denial-of-service vulnerability Version 2.16.0 Upgrade to 2.17.0nft_sec
2021-12-18 21:30:10Oh my. *Third* log4j vuln found (CVE-2021-45105, 7.5/10), this time DDoS. https://t.co/2Uq3R8l8GK https://logging.apache.org/log4j/2.x/security.htmly8
2021-12-18 20:50:21CVE-2021-45105 𝑨𝒏𝒅 𝒂𝒏𝒐𝒕𝒉𝒂 𝒐𝒏𝒆 -𝑵𝒐𝒕𝒐𝒓𝒊𝒐𝒖𝒔 𝑩.𝑰.𝑮 https://t.co/9Wg4QQ7uBImagg_py
2021-12-18 20:50:11CVE-2021-45105: Time to assess impact and decide on appropriate mitigating actions/controls:… https://t.co/7TwKkA0nH2 https://twitter.com/i/web/status/1472307471641300992FullM3talPacket
2021-12-18 20:00:05@likethecoins For those who have not noticed, the @dtact_ log4j2 scanner includes detection for CVE-2021-45105 https://t.co/ioqtxhAxfp https://twitter.com/remco_verhoef/status/1472189904469827587?s=20CyberEuropa
2021-12-18 19:50:25#Log4J 3rd patch 2.17 (!): CVE-2021-45105 (CVSS score: 7.5) - #Apache #InfoSec #Vulnerability #RiskManagement… https://t.co/GX1365dndj https://twitter.com/i/web/status/1472290757641793538MSOberlaender
2021-12-18 19:50:14「CVE-2021-45105として追跡されたlog4j 2.16の「高」重大度のサービス拒否(DoS)脆弱性を修正するために、1週間で3番目のバージョン(v2.17.0)をリリースすることを余儀なくされました」 「Apache… https://t.co/g5pTPk1Alx https://twitter.com/i/web/status/1472292239137447936foxbook
2021-12-18 19:40:10#logshell keeps on brinding Apache Log4j 2.17.0 Released CVE-2021-45105 by disabling recursive evaluation of Lookup… https://t.co/nJyrRhuZ4n https://twitter.com/i/web/status/1472289389162397698fpientka
2021-12-18 19:40:08CVE-2021-45105として追跡され、CVSSスケールで「高」(7.5)のスコアが付けられた、DoSの欠陥はlog4j2.16として 存在します。 JNDIルックアップはバージョン2.16で完全に無効にされていましたが、特… https://t.co/JXQzikmMFN https://twitter.com/i/web/status/1472289563179896832foxbook
2021-12-18 19:40:05CVE-2021-45105: Denial of Service via Uncontrolled Recursion in #infosec #infosecurity #cybersecurity #threatintel… https://t.co/6e1D1W2r2A https://twitter.com/i/web/status/1472290046606725127CyberIQs_
2021-12-18 19:30:20CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/7JDWX9H3B1 https://t.co/KbJyX8qUCS https://ift.tt/3J4jZrW https://ift.tt/3F9RuHbbuaqbot
2021-12-18 19:20:21Good analysis of the mechanics of CVE-2021-45105 the recently released log4j 2.16 high severity DOS. https://t.co/TriKBxb48d https://www.thezdi.com/blog/2021/12/17/cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutormarcwrogers
2021-12-18 19:10:33Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5) https://t.co/QLwOeNow7R https://logging.apache.org/log4j/2.x/security.htmlAlexaChenowith
2021-12-18 18:50:32Zero Day Initiative - CVE-2021-45105: Denial of Service via Uncontr... (Zero Day Initiative) In this excerpt of a… https://t.co/h2zd045M5n https://twitter.com/i/web/status/1472276027929870336InfoSec_b
2021-12-18 18:40:34@MrMiniMuli CVE-2021-45105RazorEQX
2021-12-18 18:40:08@klrgrz @likethecoins CVE-2021-45105 (CVSS score: 7.5) - A denial-of-service vulnerability affecting Log4j versions… https://t.co/OWhpnw05Yo https://twitter.com/i/web/status/1472275263719313409DFIRmadness
2021-12-18 18:30:32Zero Day Initiative — CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/vsj3hvkpIu https://aeternusmalus.wordpress.com/2021/12/18/zero-day-initiative-cve-2021-45105-denial-of-service-via-uncontrolled-recursion-in-log4j-strsubstitutor/d34dr4bbit
2021-12-18 18:20:19In order to make my weekend even more crazy MITRE does not have data on CVE-2021-45105 yet but NVD does. I don’t h… https://t.co/ajhKTRkKmQ https://twitter.com/i/web/status/1472269584954802176JGamblin
2021-12-18 18:10:54Zero Day Initiative | CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/nWWQ0OSiyK https://bit.ly/3seNhODStopMalvertisin
2021-12-18 18:10:18If you are on #Log4j duty this weekend CVE-2021-45105 has dropped but is not published on mitre yet. https://t.co/XQEwIjMDAH https://logging.apache.org/log4j/2.x/security.htmlJGamblin
2021-12-18 17:51:05Trend Micro researcher @glederfein details the latest Log4j bug (CVE-2021-45105). An attacker with control over loo… https://t.co/ZXyzNUd8SO https://twitter.com/i/web/status/1472260907329806340thezdi
2021-12-18 17:51:00@MrMiniMuli @vxunderground As w/ the prior CVE-2021-45046, CVE-2021-45105 has specific requirements to be exploitab… https://t.co/uHQa2pyMtV https://twitter.com/i/web/status/1472261014104297483wdormann
2021-12-18 17:50:52CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/q37cZkQ77i https://t.co/mdGYW2ZnqJ http://dlvr.it/SFdJV6AcooEdi
2021-12-18 17:50:32CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor https://t.co/2mE1C36zio https://ift.tt/3J4jZrWMrsYisWhy
2021-12-18 17:31:52Log4j version 2.17.0 was released. It fixes High severity CVE-2021-45105 vulnerability which causes infinite recurs… https://t.co/IdDtGAm6ZG https://twitter.com/i/web/status/1472255430336266243OguzhanTopgul
2021-12-18 17:31:22#Log4Shell: nuovi aggiornamenti per la libreria Log4j sanano la CVE-2021-45105, con gravità “alta” Rischio: 🟠 Tip… https://t.co/Uq7xuuikmy https://twitter.com/i/web/status/1472256453331324929csirt_it
2021-12-18 17:31:09CVE-2021-45105 https://t.co/RNoOhIdXjfReverseICS
2021-12-18 17:30:47Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in loo… https://t.co/lbiZjmh5kD https://twitter.com/i/web/status/1472257062755348500aojald
2021-12-18 17:20:18Log4j 2.17.0 has been released in order to patch a high severity DoS vulnerability (CVE-2021-45105, CVSS 7.5) affec… https://t.co/jyYgUwcraL https://twitter.com/i/web/status/14722550629949480960xDimitris
2021-12-18 17:13:17Beyond Compare does not use log4j in any version, so it is also not affected by the 3rd log4j vulnerability, CVE-2021-45105.ScooterSoftware
2021-12-18 17:10:59#log4j 2.17.0 is published. It fixes CVE-2021-45105 (DoS) https://t.co/SttE6Rl2Br #cybersecurity #Log4Shell https://logging.apache.org/log4j/2.x/security.htmlJoMeix
2021-12-18 17:01:36Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/un9XrJSCdi https://www.cyberkendra.com/2021/12/3rd-vulnerability-on-apache-log4j.htmlexaday
2021-12-18 16:50:31The CRU pushed out a bit more info about a New New New New #Log4j vulnerability, CVE-2021-45105: https://t.co/8FtHXzRHvd https://www.connectwise.com/resources/a-new-new-new-new-log4j-vulnerabilityConnectWiseCRU
2021-12-18 16:40:22Log4j 2.17.0 (Java 8) is out to fix CVE-2021-45105. #log4j #log4shell Log4j – Apache Log4j Security Vulnerabilities https://t.co/HCjFaCj9Tk https://logging.apache.org/log4j/2.x/security.htmls_adachi
2021-12-18 16:30:55@ktgohan 大変残念なお知らせ。 CVE-2021-45105(lookupの無限再帰を起こすDoS脆弱性。CVSS値は 7.5)が見つかり、移り先は2.17.0になりました。 https://t.co/0raPnoc08i https://twitter.com/wakatono/status/1472192203451936772wakatono
2021-12-18 16:21:39CVE-2021-45105出てるし、2.17.0になってるわ…akino_R294
2021-12-18 16:20:32🆕Neues Update 🆕 Heute ist die #log4j Version 2.17.0 erschienen, die eine weitere #Schwachstelle (CVE-2021-45105; CV… https://t.co/fDF9RUPs6r https://twitter.com/i/web/status/1472239967493664768certbund
2021-12-18 15:50:51Well, log4j 2.17 was released to fix CVE-2021-45105, which is just like CVE-2021-45046 but only a DoS impact.… https://t.co/Nzi1kQBFAD https://twitter.com/i/web/status/1472230763655532552wdormann
2021-12-18 15:50:39🚨🚨تحديث جديد لثغرة #log4j CVE-2021-45105 يحمل رقم 2.17.0 معلومات اكثر: https://t.co/D0THGOWgAh معلومات اكثر:… https://t.co/rvF5XCV5Nv https://logging.apache.org/log4j/2.x/security.html https://twitter.com/i/web/status/1472231545465409546MAlajab
2021-12-18 15:50:22DoSの脆弱性(CVE-2021-45105)が修正されたApache Log4j 2.17.0が12/18にリリースされました。2.0-beta9 から2.16.0までのバージョンが脆弱性の影響を受けます。… https://t.co/FKPZ0g834Q https://twitter.com/i/web/status/1472232003127083009piyokango
2021-12-18 15:40:36Apache #log4j 2.17.0 released to address CVE-2021-45105 https://t.co/ZHM5gFP4Y8 @AlphaOlomi https://github.com/apache/logging-log4j2/blob/6b1581901ba7a107cdc4a2208ecec03655722b44/RELEASE-NOTES.mdelixml
2021-12-18 15:40:10Log4j bibliotēkā atrasta vēl viena ievainojamība: CVE-2021-45105, attiecīgi izlaista jauna versija 2.17:… https://t.co/piW75L0g9r https://twitter.com/i/web/status/1472229780833673216caurumi
2021-12-18 15:31:12Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity Log4j vulnerability (CVE-2021-45105)… https://t.co/qs5INpRsPL https://twitter.com/i/web/status/1472226175351152651AlirezaGhahrood
2021-12-18 15:30:32#log4j 2.17.0 fixes CVE-2021-45105, where log4j does not always protect from infinite recursion, leading to DoS att… https://t.co/IzcbhD8Cwj https://twitter.com/i/web/status/1472227018142109698dnsmichi
2021-12-18 15:20:43I declare CVE-2021-45105 to be named Riskless Gull Dory https://t.co/yqBqEYp730 https://nvd.nist.gov/vuln/detail/CVE-2021-45105vulnonym
2021-12-18 15:20:40Another #log4j vulnerability was discovered today: CVE-2021-45105 with a CVSS score of 7.5. It allows DOS in non-de… https://t.co/iZdr2uNb6Q https://twitter.com/i/web/status/1472222808352591874deborah_galea
2021-12-18 15:20:24Overnight, there was a *third* Log4j vulnerability released, CVE-2021-45105: https://t.co/nPwH25tzeC Version 2.17.0… https://t.co/NswaVYgIqM https://nvd.nist.gov/vuln/detail/CVE-2021-45105 https://twitter.com/i/web/status/1472224677741350917likethecoins
2021-12-18 15:20:11Another day, another log4j vulnerability. CVE-2021-45105 is affecting 2.0-2.16 versions, allowing DoS in non-defau… https://t.co/XfVNDCW0pY https://twitter.com/i/web/status/147222495103390925041thexplorer
2021-12-18 15:10:29CVE-2021-45105 https://t.co/1NdHfFmybE #HarsiaInfo https://har-sia.info/CVE-2021-45105.htmlHar_sia
2021-12-18 15:00:24Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/3xUBi2jHAK https://twitter.com/i/web/status/1472218242836008970FreddyNt2301
2021-12-18 15:00:18Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity Log4j vulnerability (CVE-2021-45105)… https://t.co/8g12WofyKG https://twitter.com/i/web/status/1472218465045860352ksg93rd
2021-12-18 14:50:20@pwntester Are these also exploitation conditions for CVE-2021-45105?lippard
2021-12-18 14:50:15log4j v2.17.0 is now a thing (that's a seventeen)-- mitigating a DoS CVE-2021-45105. Soooooo there's that. https://t.co/OiTflrWRTq https://github.com/apache/logging-log4j2/releases/tag/rel%2F2.17.0_JohnHammond
2021-12-18 14:40:25@unix_root @TheHackersNews Thanks but this one does not relate to the latest 3rd vulnerability CVE-2021-45105. It… https://t.co/nppwEn50fU https://twitter.com/i/web/status/1472213189786062849taltalon
2021-12-18 14:40:18@TheASF ASF team - your new CVE-2021-45105 for LOG4J does not mention if we can delete the jndilookup.class like b… https://t.co/dMEqiYajay https://twitter.com/i/web/status/1472213861373816838taltalon
2021-12-18 14:40:13@gatestone CVE-2021-45105 => DoS => Apachen antama CVSS 7.5 CVE-2021-45046 => RCE => Apachen antama CVSS 9.0 Molem… https://t.co/8R1nTzK7BO https://twitter.com/i/web/status/1472214044903886850JuhoJauhiainen
2021-12-18 14:20:38Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/q3rxNAzYus (https://t.co/Xt1cJKL2eI) https://www.cyberkendra.com/2021/12/3rd-vulnerability-on-apache-log4j.html https://www.reddit.com/r/programming/comments/rj48ol/log4j_2170_released_with_a_fix_of_dos/RProgramming200
2021-12-18 14:10:53#log4j CVE-2021-45105 The Log4j team has released 2.17.0 which patches a DoS condition in a NON-DEFAULT configurat… https://t.co/HuUsAFCmIm https://twitter.com/i/web/status/1472205755084427265TomSellers
2021-12-18 14:10:22Log4jの脆弱性、最初に見つかったCVE-2021-44228に加え、CVE-2021-45046 / CVE-2021-45105 が見つかっていて、対応バージョンが2.15.0→2.16.0→2.17.0と上がってるのね。メンテナーも利用者もお疲れ様です。abe_masanori
2021-12-18 14:10:11@Zimmer_Security @TheHackersNews Oh, you haven't heard of CVE-2021-45105 yet, have you? https://t.co/Qmficmv91N https://logging.apache.org/log4j/2.x/securityMyKey_
2021-12-18 14:00:37Then if the non-default, specific config needed for CVE-2021-45105 is your environment, you can patch that in your… https://t.co/3NF0Gnm08W https://twitter.com/i/web/status/1472202635419738122nluedtke1
2021-12-18 14:00:26Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/jj859DUDuz (https://t.co/Km1J2nKXA8) https://www.cyberkendra.com/2021/12/3rd-vulnerability-on-apache-log4j.html https://www.reddit.com/r/programming/comments/rj48ol/log4j_2170_released_with_a_fix_of_dos/RProgramming150
2021-12-18 13:50:15Log4j - CVE-2021-45105: https://t.co/lIldZDPPoZ https://logging.apache.org/log4j/2.x/security.htmlLinInfoSec
2021-12-18 13:40:39Lançada versão 2.17.0 do Log4j 2, que corrige o CVE-2021-45105. Instale agora! https://t.co/t9NZqObZSa… https://t.co/JJ6G0W54pa https://logging.apache.org/log4j/2.x/download.html https://twitter.com/i/web/status/1472197491923853323anchisesbr
2021-12-18 13:40:17@likethecoins @BlueTeamJK It is now CVE-2021-45105 (https://t.co/Z0eeqMpcWk). https://www.cve.org/CVERecord?id=CVE-2021-45105remco_verhoef
2021-12-18 13:40:05うーん、#log4j 2.x ひととおり落ち着いたかなぁと思っていたら (2.16.0 / 2.12.2 release) 別の DoS 脆弱性がまた追加で見つかっとるのね‥>CVE-2021-45105 2.17.0 / 2.12.3 で修正見込なのかしら‥?fripper1214
2021-12-18 13:31:30Apache Issues 3rd Patch to Fix New High-Severity Log4j which is tracked as CVE-2021-45105. The new vulnerability a… https://t.co/pzXM88Bvl2 https://twitter.com/i/web/status/1472192590896197637vaultinfosec
2021-12-18 13:31:01Log4j 2.17.0 released, addresses CVE-2021-45105 non-default configuration DoS: https://t.co/48ZsH1Hwws https://bit.ly/3DSOCgbtimdafoe
2021-12-18 13:30:52New post from https://t.co/9KYxtdZjkl (CVE-2021-45105) has been published on https://t.co/hcbzjjGAoe http://www.sesin.at https://www.sesin.at/2021/12/18/cve-2021-45105/www_sesin_at
2021-12-18 13:30:50New post from https://t.co/uXvPWJy6tj (CVE-2021-45105) has been published on https://t.co/BBLBodr3hB http://www.sesin.at https://www.sesin.at/2021/12/18/cve-2021-45105/WolfgangSesin
2021-12-18 13:30:04Websocketを用いた新しいAttack Vectorの話も含め、いろいろ…。CVE-2021-45105 (3つめの脆弱性)修正はLog4j 2.17.0で行われます。 / New Local Attack Vector E… https://t.co/sK80X7T0w3 https://twitter.com/i/web/status/1472197255432077314wakatono
2021-12-18 13:19:2212/18 #Log4j 2.17.0がリリースされました。 CVE-2021-45105 JNDIを使用するコンポーネントは、システムプロパティを介して個別に有効に サポートされているプロトコルとしてLDAPおよびLDAPSをJ… https://t.co/8xDGGezRzT https://twitter.com/i/web/status/1472191062425075713t_nihonmatsu
2021-12-18 13:15:46セキュリティの脆弱性CVE-2021-45105 要約: Apache Log4j2 は、ルックアップ評価における無限再帰から常に保護されているわけではありません。 Apache Log4j2 バージョン 2.0-alpha1 か… https://t.co/HpX5yYAnuT https://twitter.com/i/web/status/1472191289190150146t_nihonmatsu
2021-12-18 13:10:51Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/e7RrkOlZUX https://twitter.com/i/web/status/1472192170958413834security_wang
2021-12-18 13:10:28CVE-2021-45105(DoS脆弱性。CVSS値は 7.5)がまた1つ見つかり(lookupの無限再帰を起こすパターンが見つかった)、Log4jは2.17.0に…。Shellshockの時のbash泥沼修正の再来? / Ap… https://t.co/mLtx8oQWTy https://twitter.com/i/web/status/1472192203451936772wakatono
2021-12-18 13:07:30@ApacheSolr #Apache #Solr is not vulnerable to the recently found security issues CVE-2021-45046 and CVE-2021-45105… https://t.co/ayY08QT6ii https://twitter.com/i/web/status/1472187690175115266thetaph1
2021-12-18 13:00:44Due to the new DoS vulnerabilities (CVE-2021-45105) found in log4j 2.16.0, updated our log4j scanner and patcher to… https://t.co/LYnT17PrbY https://twitter.com/i/web/status/1472189904469827587remco_verhoef
2021-12-18 12:55:32@DIVDnl @ncsc_nl @sans_isc CORRECTION, new DoS CVE is CVE-2021-45105remco_verhoef
2021-12-18 12:55:11#log4j Update: CVE-2021-45105, a new vulnerability in Log4j has been published. More details and a fix suggestion c… https://t.co/b2RgomQHsn https://twitter.com/i/web/status/1472185907944243202WhiteSourceSoft
2021-12-18 12:53:01Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/2kPqtZ4hfo https://twitter.com/i/web/status/1472186431523016709NandanLohitaksh
2021-12-18 12:52:20Latest Log4j vulnerability (CVE-2021-45105): - only affects non-default configs - could lead to a denial of servic… https://t.co/PlGGfCsMts https://twitter.com/i/web/status/1472186633042677763SimonByte
2021-12-18 12:51:04#Apache #Solr is not vulnerable to the recently found security issues CVE-2021-45046 and CVE-2021-45105. Solr uses… https://t.co/UONXMJXMIo https://twitter.com/i/web/status/1472187201639354369thetaph1
2021-12-18 12:50:44Log4j 2.17.0がリリース。 CVE-2021-45105への対応。 ・影響範囲: 2.0-alpha1から2.16.0の ・対応策:  - 2.17.0にアップグレード  - 構成の変更(詳細はApacheのサイトに記… https://t.co/YMATFd7AXS https://twitter.com/i/web/status/1472187231775633418seigo303
2021-12-18 12:44:24CVE-2021-44228に加えてCVE-2021-45046とかCVE-2021-45105が出てきて泥沼に……Takemaro_001
2021-12-18 12:33:39いつまで続く?CVE-2021-45105 に対する Log4j 2.17.0 がリリースされましたが、Apache Solr(と Lucene も)は本件については安全とのことです。kojisays
2021-12-18 12:27:13CVE-2021-45105 All set for the weekend? Not so fast. Yesterday, BleepingComputer  all the log4j and logback CVEs… https://t.co/UFJI4t1VKV https://twitter.com/i/web/status/1472177545961517058VulmonFeeds
2021-12-18 12:25:18Log4j 2.16以下のバージョンに新たなDOS脆弱性( CVE-2021-45105)が見つかったため、2.17への再度アップデートが必要になりました。severityはhighでCVSS 7.5です。… https://t.co/clhqR3cNRg https://twitter.com/i/web/status/1472177959360675845making
2021-12-18 12:24:28Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/OhmzriYwsZ /post https://t.co/ZNTgGWjAIQ https://www.cyberkendra.com/2021/12/3rd-vulnerability-on-apache-log4j.html https://www.reddit.com/r/programming/comments/rj48ol/log4j_2170_released_with_a_fix_of_dos/?utm_source=iftttreddit_progr
2021-12-18 12:20:17https://t.co/fyfUbMvYBs CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation https://logging.apache.org/log4j/2.x/security.htmlryotkak
2021-12-18 12:13:15Added a new rule for CVE-2021-45105 in log4j this morning, and changed the output to a file tree by default. It'll… https://t.co/xBvL0jNvMA https://twitter.com/i/web/status/1472175836128288768Darkarnium
2021-12-18 12:10:15Log4j 2.16以下のバージョンに新たなDOS脆弱性( CVE-2021-45105)が見つかったため、2.17への再度アップデートが必要になりました。severityはhighでCVSS 7.5です。… https://t.co/yQYl2wqgfw https://twitter.com/i/web/status/1472177313274273797making
2021-12-18 12:01:07CVE-2021-45105 : #Apache Log4j2 versions 2.0-alpha1 through 2.16.0 excluding 2.12.3 did not protect from uncontro… https://t.co/fMqsz78tqB https://twitter.com/i/web/status/1472174215130402818CVEreport
2021-12-18 11:51:08New post: "Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5)" https://t.co/6mYQ1GCnQa https://ift.tt/3mgJzQSMyinfosecfeed
2021-12-18 11:50:44Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/Iq3EuwT7WO https://twitter.com/i/web/status/1472172094737694722Swati_THN
2021-12-18 11:43:41また log4j の新しい脆弱性(CVE-2021-45105)出てきたのかJangari_nTK
2021-12-18 11:43:32@CERTCyberdef tracked as #CVE-2021-45105. Log4J 2.17.0 has been released.z00kov
2021-12-18 11:42:34UPDATE: #log4j 2.16.0 is vulnerable, we strongly recommend updating the new version 2.17.0 to fix #CVE-2021-45105. https://t.co/O6cywdyaD4 https://sysdig.com/blog/exploit-detect-mitigate-log4j-cve/MiguelHzBz
2021-12-18 11:31:19@JuhoJauhiainen Siis 2.17 on jakelussa, mutta korjaa vain DoS-ongelman CVE-2021-45105, joka on paljon pienempi risk… https://t.co/YwE14Il4UY https://twitter.com/i/web/status/1472165358391934981gatestone
2021-12-18 11:31:03In terms of updating: #log4j #CVE-2021-45046 #CVE-2021-45105 #CVE-2021-44228 https://t.co/mHFdgF1e2btheDeallocated
2021-12-18 11:30:48Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5) https://t.co/ZW5D73D3no… https://t.co/we9VpC5nVB https://logging.apache.org/log4j/2.x/security.html https://twitter.com/i/web/status/1472166166604906497beingsheerazali
2021-12-18 11:10:46And bawl4j 2.17.0 has dropped with a fix for a DoS vuln ( CVE-2021-45105). https://t.co/dBIlhzX0TV https://logging.apache.org/log4j/2.x/security.htmllm741
2021-12-18 11:01:03More log4j fun. CVE-2021-45105 means it's back to work. Version 2.17 here we come. *Hi-ho, Hi-ho ...."sammm123
2021-12-18 11:00:33Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5) https://t.co/eEsrATFByO https://logging.apache.org/log4j/2.x/security.html_r_netsec
2021-12-18 11:00:19Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5) via /r/netsec… https://t.co/V0ExzCbL2O https://twitter.com/i/web/status/1472159580562116608CybrXx0
2021-12-18 10:52:28新しいの出てるな(CVE-2021-45105)Linda_pp
2021-12-18 10:52:15NEW: CVE-2021-45105—DoS bug impacting #log4j 2.16.0, rated 'High' in severity. The recommendation now is to be on 2… https://t.co/0SJ89FD3Wh https://twitter.com/i/web/status/1472152916823842826Ax_Sharma
2021-12-18 10:52:07#software Log4j 2.17.0 released with a fix of DoS vulnerability CVE-2021-45105 [3rd bug] https://t.co/H3BPcrAAX7 https://t.co/0nOsCzraRT https://ift.tt/323qzOysoftwaremars
2021-12-18 10:51:53Ahh... as expected. New CVE-2021-45105 for Log4j. One more round of fixing https://t.co/cMNGzqN0JK #log4j2 #Log4Shell #CVE-2021-45105 https://logging.apache.org/log4j/2.x/security.htmlNWsecure
2021-12-18 10:51:25Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity Log4j vulnerability (CVE-2021-45105)… https://t.co/09PCzOWBCw https://twitter.com/i/web/status/1472155442377854983MTpokerface
2021-12-18 10:51:09Still going strong. Patch your #Log4j to 2.17 which fixes CVE-2021-45105, an infinite recursion in lookups. https://t.co/mC8h0F752X https://logging.apache.org/log4j/2.x/security.htmlStealthsploit
2021-12-18 10:39:44Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/HzF6SId113 https://twitter.com/i/web/status/1472150002780684289beingsheerazali
2021-12-18 10:31:35Log4j hype check - the latest Log4j vulnerability, todays CVE-2021-45105: - only applies to *non-default* configur… https://t.co/ls2DzcUzuG https://twitter.com/i/web/status/1472151817379360771GossiTheDog
2021-12-18 10:30:34Apache Log4j 2.17.0がリリースされていますね。 CVE-2021-45105 (DoS攻撃の脆弱性) への対応が含まれているとのこと。 https://t.co/ChYhesguoX https://github.com/apache/logging-log4j2/blob/6b1581901ba7a107cdc4a2208ecec03655722b44/RELEASE-NOTES.mdbakera
2021-12-18 10:29:02Looks like we are getting another round of #Log4Shell #log4j patches CVE-2021-45105 https://t.co/Un6pmgWHU0 ${${::-${::-$${::-j}}}} https://issues.apache.org/jira/browse/LOG4J2-3230TomLawrenceTech
2021-12-18 10:28:15Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/wFiBgn1MUt https://twitter.com/i/web/status/1472148677498048512TheHackersNews
2021-12-18 10:27:52Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity #Log4j vulnerability (CVE-2021-45105… https://t.co/TpZqbPQKLK https://twitter.com/i/web/status/1472148732875399170unix_root
2021-12-18 10:21:06Apache Issues 3rd patch update -- version 2.17.0 -- to fix a new high-severity Log4j vulnerability (CVE-2021-45105)… https://t.co/0UnobmSEpD https://twitter.com/i/web/status/1472149521572544517IT_news_for_all
2021-12-18 10:16:26https://t.co/awjCsUTxHT 風呂から出たら log4j 2.17.0 が出ていた。 CVE-2021-45105 。 https://logging.apache.org/log4j/2.x/security.htmlktgohan
2021-12-18 10:16:07Log4J 2.17.0 is now out fixing CVE-2021-45105 Yeah, there's another one, this time using recursion & not related t… https://t.co/3q8zE8SyaC https://twitter.com/i/web/status/1472145932590456835peter_mount
2021-12-18 09:42:26Log4j 2.17.0 (Java 8) https://t.co/qD29jTslL1 Java 8 の Log4j 2.16.0 に DoS 脆弱性 CVE-2021-45105 (CVSS 7.5) があり修正された 2.17.0 がリリースされている https://logging.apache.org/log4j/2.x/security.html0x009AD6_810
2021-12-18 09:41:52CVE-2021-45105のDoS確かにログ吐けなくなったりするけどプロセスまで落とせないな。どうやるんだろ。knqyf263
2021-12-18 09:31:39🤦#log4j 2.17.0 release, fixing a 7.5 CVSS DoS vulnerability (CVE-2021-45105) "Apache Log4j2 does not always protec… https://t.co/1HO7WYfGpG https://twitter.com/i/web/status/1472135295336333317hugobatista
2021-12-18 09:21:33*updates log4j to 2.16* *CVE-2021-45105 announced* https://t.co/fMoqdiOFH4JoeSteel25
2021-12-18 08:50:52And we’re in round 3, #CVE-2021-45105 got added to the list, log4j 2.17 is the recommended version now.BWC_DE
2021-12-18 08:50:46And we’re in round 3, #CVE-2021-45105 got added to the list, log4j 2.17 is the recommended version now.BWC_DE
2021-12-18 08:50:31Ahh... It was expected. New CVE-2021-45105 is out for Log4j. https://t.co/cMNGzqN0JK #log4j2 #Log4Shell https://logging.apache.org/log4j/2.x/security.htmlNWsecure
2021-12-18 08:40:48また更新されたたかー。log4j。 CVE-2021-45105 DOSね・・・・ #log4j #vulnerability #CVE https://t.co/WfK6OS5RYf https://logging.apache.org/log4j/2.x/security.htmldragonstar7722
2021-12-18 08:31:27CVE-2021-45105 CVSS 7.5 今のところはDoSだけどohhara_shiojiri
2021-12-18 08:30:56Fixed in Log4j 2.17.0 (Java 8) CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in loo… https://t.co/EpLz3bHWZe https://twitter.com/i/web/status/1472121087974871041MasafumiNegishi
2021-12-18 08:21:43#log4j is also affected by a #DoS vulnerability CVE-2021-45105. At this point, we believe our new rule and mitigati… https://t.co/eD3JOVCxjm https://twitter.com/i/web/status/1472115021798850560CoreRuleSet
2021-12-18 07:52:44@VincentMucid 又来了个CVE-2021-45105,从2.15.0修到2.16.0,再到2.17.0😄jamesxujoy
2021-12-18 07:51:10New post: "log4j 2.17.0 Released to Fix CVSS 7.5 Denial of Service (CVE-2021-45105)" https://t.co/1b1hndotOm https://ift.tt/3p33EffMyinfosecfeed
2021-12-18 07:33:27あれ... Log4j 2.17.0が出てる...CVE-2021-45105が新しく出てきてた. あとCVE-2021-45046のCVSSも9.0に変更されてるし、色々と追加で明らかになった感じなんかな? https://t.co/6dhH6yBesg https://logging.apache.org/log4j/2.x/security.htmlkasa_zip
2021-12-18 07:33:14I belive CVE-2021-45105 fixed in log4j 2.17 affects few systems (or at least few that are already on 2.15+). Other… https://t.co/qioe1qhNFE https://twitter.com/i/web/status/1472104529663508482seolsson
2021-12-18 07:31:20log4jの脆弱性、新たにCVE-2021-45105が出てきました。CVSS v3で7.5です。 修正された2.17.0がリリースされたようです。 https://t.co/SGlUgW3l6D https://logging.apache.org/log4j/2.x/security.html#CVE-2021-45105tomoam_mat
2021-12-18 07:23:11Thats it! I’m not logging anything anymore! (CVE-2021-45105). Just go nna close my eyes…and go to my happy place https://t.co/ust2jgGCQtfguime
2021-12-18 07:22:57log4j 2.17.0 Released to Fix CVSS 7.5 Denial of Service (CVE-2021-45105) https://t.co/eEsrATFByO https://logging.apache.org/log4j/2.x/security.html_r_netsec
2021-12-18 07:21:51log4j 2.17.0 Released to Fix CVSS 7.5 Denial of Service (CVE-2021-45105) https://t.co/ZW5D73D3no #infosec #pentest #bugbounty RT @_r_netsec https://logging.apache.org/log4j/2.x/security.htmlbeingsheerazali
2021-12-18 07:20:54The new CVE-2021-45105 log4j DoS vuln has been a matter of public record for a few days now but no vendor has come… https://t.co/paewW5jUOr https://twitter.com/i/web/status/1472103430139351044rushyo
2021-12-18 07:01:40CVE-2021-45105になるのかな。ohhara_shiojiri
2021-12-18 07:00:22CVE-2021-45105 => addressed in log4j-core 2.17.0 CVSS: 7.5 Currently labeled as a Denial of Service vulnerability.CGuntur
2021-12-18 06:41:33@eltronnnnn @vxunderground @cstromblad It's referenced as DOS by log4j now ( CVE-2021-45105 ). Fixed in 2.17. Can'… https://t.co/aWupmFnbrY https://twitter.com/i/web/status/1472092334183563264seolsson