CVE-2021-45046CISA KEVEPSS p100.0%
CVE-2021-45046Apache Log4j2 Deserialization of Untrusted Data Vulnerability
Apache / Log4j2
Description
Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations.
Scoring
| EPSS | 99.98% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z |
CISA KEV entry
Added to KEV: 2023-05-01
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| KEVEntry | Apache Log4j2 Deserialization of Untrusted Data Vulnerabilitykev-cve-2021-45046 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.