CVEs-PoC/2022/CVE-2022-0070.md at e6ecd99f3d241ced14da2cc5fcb4da3fd3429d9d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-30 13:19:29 +02:00

Files

T

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

Incomplete fix for CVE-2021-3100. The Apache Log4j hotpatch package starting with log4j-cve-2021-44228-hotpatch-1.1-16 will now explicitly mimic the Linux capabilities and cgroups of the target Java process that the hotpatch is applied to.

POC

Reference

https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities

Github

https://github.com/ARPSyndicate/cvemon

829 B Raw Blame History

CVE-2022-0070

Description

POC

Reference

Github

829 B

Raw Blame History