📦 Log4jhotpatch

by Amazon

🔍 What is Log4jhotpatch?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-3100

HIGH CVSS 8.8 Apr 19, 2022

CVE-2021-3100 is a privilege escalation vulnerability in AWS's Apache Log4j hotpatch package. It allows attackers to gain elevated permissions by exploiting improper permission handling during the hot...

CVE-2022-0070

HIGH CVSS 8.8 Apr 19, 2022

This vulnerability is an incomplete fix for CVE-2021-3100 in Apache Log4j hotpatch packages. It allows attackers to escalate privileges by exploiting the hotpatch's failure to properly mimic Linux cap...