QID 376185

Date Published: 2021-12-16

QID 376185: DataDog Agent Log4j Remote Code Execution (RCE) Vulnerability

The Datadog Agent is software that runs on your hosts. It collects events and metrics from hosts and sends them to Datadog, where you can analyze your monitoring and performance data.

Affected Versions
Datadog Agent version(s) 6.17.0 to 6.32.2
Datadog Agent version(s) 7.17.0 to 7.32.2

QID Detection Logic (Authenticated):
This QID checks for vulnerable versions of Datadog Agent present on the target.

A malicious actor with network access to an impacted DataDog Agent may exploit this issue to gain full control of the target system.

  • CVSS V3 rated as Critical - 10 severity.
  • CVSS V2 rated as Critical - 9.3 severity.
  • Solution
    Vendor has released patches, Please check DataDog Agent Advisory for updates.
    Vendor References

    CVEs related to QID 376185

    Software Advisories
    Advisory ID Software Component Link
    datadog-agent URL Logo github.com/DataDog/datadog-agent/releases/tag/7.32.3