Vulnerability Scan Results: CVE-2021-44228 Log4j
0 Votes |
Description
This Analysis parses the results of a scan for vulnerable Log4j files based on CVE-2021-44228
Property Details
2998661 | |
Production - Fully Tested and Ready for Production | |
Vulnerability Scan Results: CVE-2021-44228 Log4j | |
BESC | |
Vulnerability Scan Results: CVE-2021-44228 Log4j | |
mjaeger on 12/13/2021 5:37:13 AM | |
mjaeger on 12/13/2021 5:37:13 AM | |
1985 Views / 49 Downloads | |
* Average over 0 ratings. ** Log In or Register to add your rating. |
Properties
CVE-2021-44228 - Scan Results Exist
Period
1 hour
* Results in a true/false |
exists files "BPS-Scans/CVE-2021-44228.txt" of folder (if (name of operating system as lowercase starts with "win") then (pathname of parent folder of client) else (if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
CVE-2021-44228 - Scan Completion Time
Period
1 hour
* Results in a true/false |
modification times of files "BPS-Scans/CVE-2021-44228.txt" whose ((if exists property "locked lines" then (locked line (number of locked lines of it) of it) else (line (number of lines of it) of it)) starts with "SCAN_COMPLETE") of folder (if (name of operating system as lowercase starts with "win") then (pathname of parent folder of client) else (if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
CVE-2021-44228 - Log4j pathnames
Period
1 hour
* Results in a true/false |
(if exists property "locked lines" then locked lines of it else lines of it) whose (it does not start with "SCAN_COMPLETE") of files "BPS-Scans/CVE-2021-44228.txt" of folder (if (name of operating system as lowercase starts with "win") then (pathname of parent folder of client) else (if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
CVE-2021-44228 - Log4j potentially vulnerable pathnames
Period
1 hour
* Results in a true/false |
it whose (not exists (following texts of last "log4j-core" of it) whose (it as version >= version "2.15.0")) of (it as string) of (if exists property "locked lines" then locked lines of it else lines of it) whose (it does not start with "SCAN_COMPLETE") of files "BPS-Scans/CVE-2021-44228.txt" of folder (if (name of operating system as lowercase starts with "win") then (pathname of parent folder of client) else (if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite")))
CVE-2021-44228 - Log4j path, sha256 (sha1 if besclient <9.1), and matching known version
Period
1 hour
* Results in a true/false |
(item 0 of item 0 of it, item 1 of item 0 of it, unique value of following text of first ":" of item 1 of (item 1 of item 0 of it, elements of item 1 of it) whose (item 0 of it = preceding text of first ":" of item 1 of it) | "Not Matched") of ((it, (if (version of client >= "9.1") then (sha256 of file(it) | "Not Found") else (sha1 of file(it) | "Not Found"))) of (it as string) of (if exists property "locked lines" then locked lines of it else lines of it) whose (it does not start with "SCAN_COMPLETE") of files "BPS-Scans/CVE-2021-44228.txt" of folder (if (name of operating system as lowercase starts with "win") then (pathname of parent folder of client) else (if (version of client >= "9" as version) then (pathname of parent folder of data folder of client) else (pathname of parent folder of parent folder of client folder of site "actionsite"))), set of ("bf4f41403280c1b115650d470f9b260a5c9042c04d9bcc2a6ca504a66379b2d6:apache-log4j-2.0-alpha2-bin/log4j-core-2.0-alpha2.jar"; "58e9f72081efff9bdaabd82e3b3efe5b1b9f1666cefe28f429ad7176a6d770ae:apache-log4j-2.0-beta1-bin/log4j-core-2.0-beta1.jar"; "ed285ad5ac6a8cf13461d6c2874fdcd3bf67002844831f66e21c2d0adda43fa4:apache-log4j-2.0-beta2-bin/log4j-core-2.0-beta2.jar"; "dbf88c623cc2ad99d82fa4c575fb105e2083465a47b84d64e2e1a63e183c274e:apache-log4j-2.0-beta3-bin/log4j-core-2.0-beta3.jar"; "a38ddff1e797adb39a08876932bc2538d771ff7db23885fb883fec526aff4fc8:apache-log4j-2.0-beta4-bin/log4j-core-2.0-beta4.jar"; "7d86841489afd1097576a649094ae1efb79b3147cd162ba019861dfad4e9573b:apache-log4j-2.0-beta5-bin/log4j-core-2.0-beta5.jar"; "4bfb0d5022dc499908da4597f3e19f9f64d3cc98ce756a2249c72179d3d75c47:apache-log4j-2.0-beta6-bin/log4j-core-2.0-beta6.jar"; "473f15c04122dad810c919b2f3484d46560fd2dd4573f6695d387195816b02a6:apache-log4j-2.0-beta7-bin/log4j-core-2.0-beta7.jar"; "b3fae4f84d4303cdbad4696554b4e8d2381ad3faf6e0c3c8d2ce60a4388caa02:apache-log4j-2.0-beta8-bin/log4j-core-2.0-beta8.jar"; "dcde6033b205433d6e9855c93740f798951fa3a3f252035a768d9f356fde806d:apache-log4j-2.0-beta9-bin/log4j-core-2.0-beta9.jar"; "85338f694c844c8b66d8a1b981bcf38627f95579209b2662182a009d849e1a4c:apache-log4j-2.0-bin/log4j-core-2.0.jar"; "db3906edad6009d1886ec1e2a198249b6d99820a3575f8ec80c6ce57f08d521a:apache-log4j-2.0-rc1-bin/log4j-core-2.0-rc1.jar"; "ec411a34fee49692f196e4dc0a905b25d0667825904862fdba153df5e53183e0:apache-log4j-2.0-rc2-bin/log4j-core-2.0-rc2.jar"; "a00a54e3fb8cb83fab38f8714f240ecc13ab9c492584aa571aec5fc71b48732d:apache-log4j-2.0.1-bin/log4j-core-2.0.1.jar"; "c584d1000591efa391386264e0d43ec35f4dbb146cad9390f73358d9c84ee78d:apache-log4j-2.0.2-bin/log4j-core-2.0.2.jar"; "8bdb662843c1f4b120fb4c25a5636008085900cdf9947b1dadb9b672ea6134dc:apache-log4j-2.1-bin/log4j-core-2.1.jar"; "c830cde8f929c35dad42cbdb6b28447df69ceffe99937bf420d32424df4d076a:apache-log4j-2.2-bin/log4j-core-2.2.jar"; "6ae3b0cb657e051f97835a6432c2b0f50a651b36b6d4af395bbe9060bb4ef4b2:apache-log4j-2.3-bin/log4j-core-2.3.jar"; "535e19bf14d8c76ec00a7e8490287ca2e2597cae2de5b8f1f65eb81ef1c2a4c6:apache-log4j-2.4-bin/log4j-core-2.4.jar"; "42de36e61d454afff5e50e6930961c85b55d681e23931efd248fd9b9b9297239:apache-log4j-2.4.1-bin/log4j-core-2.4.1.jar"; "4f53e4d52efcccdc446017426c15001bb0fe444c7a6cdc9966f8741cf210d997:apache-log4j-2.5-bin/log4j-core-2.5.jar"; "df00277045338ceaa6f70a7b8eee178710b3ba51eac28c1142ec802157492de6:apache-log4j-2.6-bin/log4j-core-2.6.jar"; "28433734bd9e3121e0a0b78238d5131837b9dbe26f1a930bc872bad44e68e44e:apache-log4j-2.6.1-bin/log4j-core-2.6.1.jar"; "cf65f0d33640f2cd0a0b06dd86a5c6353938ccb25f4ffd14116b4884181e0392:apache-log4j-2.6.2-bin/log4j-core-2.6.2.jar"; "5bb84e110d5f18cee47021a024d358227612dd6dac7b97fa781f85c6ad3ccee4:apache-log4j-2.7-bin/log4j-core-2.7.jar"; "ccf02bb919e1a44b13b366ea1b203f98772650475f2a06e9fac4b3c957a7c3fa:apache-log4j-2.8-bin/log4j-core-2.8.jar"; "815a73e20e90a413662eefe8594414684df3d5723edcd76070e1a5aee864616e:apache-log4j-2.8.1-bin/log4j-core-2.8.1.jar"; "10ef331115cbbd18b5be3f3761e046523f9c95c103484082b18e67a7c36e570c:apache-log4j-2.8.2-bin/log4j-core-2.8.2.jar"; "dc815be299f81c180aa8d2924f1b015f2c46686e866bc410e72de75f7cd41aae:apache-log4j-2.9.0-bin/log4j-core-2.9.0.jar"; "9275f5d57709e2204900d3dae2727f5932f85d3813ad31c9d351def03dd3d03d:apache-log4j-2.9.1-bin/log4j-core-2.9.1.jar"; "f35ccc9978797a895e5bee58fa8c3b7ad6d5ee55386e9e532f141ee8ed2e937d:apache-log4j-2.10.0-bin/log4j-core-2.10.0.jar"; "5256517e6237b888c65c8691f29219b6658d800c23e81d5167c4a8bbd2a0daa3:apache-log4j-2.11.0-bin/log4j-core-2.11.0.jar"; "d4485176aea67cc85f5ccc45bb66166f8bfc715ae4a695f0d870a1f8d848cc3d:apache-log4j-2.11.1-bin/log4j-core-2.11.1.jar"; "3fcc4c1f2f806acfc395144c98b8ba2a80fe1bf5e3ad3397588bbd2610a37100:apache-log4j-2.11.2-bin/log4j-core-2.11.2.jar"; "057a48fe378586b6913d29b4b10162b4b5045277f1be66b7a01fb7e30bd05ef3:apache-log4j-2.12.0-bin/log4j-core-2.12.0.jar"; "5dbd6bb2381bf54563ea15bc9fbb6d7094eaf7184e6975c50f8996f77bfc3f2c:apache-log4j-2.12.1-bin/log4j-core-2.12.1.jar"; "c39b0ea14e7766440c59e5ae5f48adee038d9b1c7a1375b376e966ca12c22cd3:apache-log4j-2.13.0-bin/log4j-core-2.13.0.jar"; "6f38a25482d82cd118c4255f25b9d78d96821d22bab498cdce9cda7a563ca992:apache-log4j-2.13.1-bin/log4j-core-2.13.1.jar"; "54962835992e303928aa909730ce3a50e311068c0960c708e82ab76701db5e6b:apache-log4j-2.13.2-bin/log4j-core-2.13.2.jar"; "e5e9b0f8d72f4e7b9022b7a83c673334d7967981191d2d98f9c57dc97b4caae1:apache-log4j-2.13.3-bin/log4j-core-2.13.3.jar"; "68d793940c28ddff6670be703690dfdf9e77315970c42c4af40ca7261a8570fa:apache-log4j-2.14.0-bin/log4j-core-2.14.0.jar"; "9da0f5ca7c8eab693d090ae759275b9db4ca5acdbcfe4a63d3871e0b17367463:apache-log4j-2.14.1-bin/log4j-core-2.14.1.jar"; "006fc6623fbb961084243cfc327c885f3c57f2eba8ee05fbc4e93e5358778c85:log4j-2.0-alpha1/log4j-core-2.0-alpha1.jar"; "e7048ad52e3b6f1267b7ceb2c07200a5ce61271bcf59f98fd238bf60e4137932:apache-log4j-2.15.0-bin/log4j-core-2.15.0.jar"))
Relevance
if exists property "in proxy agent context" then not in proxy agent context else true
Sharing
Social Media: |