daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update opennms-log4j-jndi-rce.yaml

patch-1
Prince Chaddha 2022-07-15 10:23:51 +05:30 committed by GitHub
parent 918a56d516
commit 69f0e7675a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
vulnerabilities/other/opennms-log4j-jndi-rce.yaml
View File

@ -10,6 +10,7 @@ info:
reference:
- https://www.horizon3.ai/the-long-tail-of-log4shell-exploitation/
- https://www.opennms.com/en/blog/2021-12-10-opennms-products-affected-by-apache-log4j-vulnerability-cve-2021-44228/
- https://logging.apache.org/log4j/2.x/security.html
classification:
cve-id: CVE-2021-44228
metadata:
@ -39,6 +40,10 @@ requests:
- '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Match for extracted ${hostName} variable
extractors:
- type: kval
kval:
- interactsh_ip # Print remote interaction IP in output
- type: regex
part: interactsh_request
group: 1