Note: This query is designed for Linux only. For a basic search which lists processes called Log4J on Windows, Mac and Linux, please view this query.
This query helps customers identify vulnerable Log4J components in their environment. It shows Log4J installed by package managers. If you identify the vulnerable component you should update immediately and review your logs for any sign of malicious exploitation.
select name, version, regex_match(version,"(\d+)",1) as first, regex_match(version,"\d+.(\d+)",1) as second, regex_match(version,"\d+.\d+.(\d+)",1) as third, regex_match(version,"\d+.\d+.\d+p(\d+)",1) as fourth from deb_packages where name LIKE 'log4j' UNION ALL select name, version, regex_match(version,"(\d+)",1) as first, regex_match(version,"\d+.(\d+)",1) as second, regex_match(version,"\d+.\d+.(\d+)",1) as third, regex_match(version,"\d+.\d+.\d+p(\d+)",1) as fourth from rpm_packages where name LIKE 'log4j';
Special thanks to CraigJones
Top Comments
-
CraigJones
-
Cancel
-
Vote Up
+2
Vote Down
-
-
More
-
Cancel
-
Dale Lott
in reply to CraigJones
-
Cancel
-
Vote Up
0
Vote Down
-
-
More
-
Cancel
-
Donavon McKigney
in reply to CraigJones
-
Cancel
-
Vote Up
0
Vote Down
-
-
More
-
Cancel
-
Jeremy Berrios
in reply to CraigJones
-
Cancel
-
Vote Up
0
Vote Down
-
-
More
-
Cancel
-
CraigJones
in reply to Brad Krakow
-
Cancel
-
Vote Up
0
Vote Down
-
-
More
-
Cancel
-
Brad Krakow
in reply to CraigJones
-
Cancel
-
Vote Up
+1
Vote Down
-
-
More
-
Cancel
Comment-
Brad Krakow
in reply to CraigJones
-
Cancel
-
Vote Up
+1
Vote Down
-
-
More
-
Cancel
Children