Vulnerability Notice VN-2021-465 - "Log4Shell" - Extreme Networks

Extreme Networks has reviewed and evaluated product and software exposure to CVE-2021-44228, known as the "Log4Shell" vulnerability.

By using a specially crafted string, an attacker can insert a malicious payload via JNDI through Log4j's logging subsystem. The payload can result in an RCE at the privilege level of the Log4j service or divulge sensitive information.

For more details and an updated list of impacted devices, please see the official VN notification here.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Extreme Networks

Vulnerability Notice VN-2021-465 - "Log4Shell"

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SA-2023-107 - libcurl cookie injection with none file (CVE-2023-38546)

SA-2023-106 - SOCKS5 heap buffer overflow (CVE-2023-38545)