Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2021-45105 is a medium severity vulnerability with a CVSS score of 5.9. Exploits are available; patches have been released and should be applied urgently.
Very high probability of exploitation in the next 30 days
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0 and 2.12.3.
Only the org.apache.logging.log4j:log4j-core package is directly affected by this vulnerability. The org.apache.logging.log4j:log4j-api should be kept at the same version as the org.apache.logging.log4j:log4j-core package to ensure compatability if in use.
| Vendor | Product |
|---|---|
| Oracle | Retail Eftlink |
| Oracle |
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
| Communications Cloud Native Core Network Repository Function |
| Oracle | Retail Financial Integration |
| Oracle | Retail Order Broker |
| Oracle | Retail Data Extractor For Merchandising |
| Oracle | Communications Interactive Session Recorder |
| Oracle | Retail Integration Bus |
| Sonicwall | 6bk1602 0aa52 0tp0 |
| Oracle | Communications IP Service Activator |
| Oracle | Enterprise Manager Ops Center |
And 111 more...