Date Published: 2022-01-18
QID 376245: VMware Tanzu GemFire Log4j Remote Code Execution (RCE) Vulnerability (VMSA-2021-0028) (Log4Shell)
VMware GemFire is a distributed data management platform. Pivotal GemFire is designed for many diverse data management situations, but is especially useful for high-volume, latency-sensitive, mission-critical, transactional systems.
VMware GemFire when deployed without a SecurityManager, contain a JMX service available which contains an insecure default configuration.
VMware GemFire versions prior to 9.10.13
VMware GemFire versions prior to 9.9.7
QID Detection Logic
This QID checks for the vulnerable version of VMware GemFire on system
A malicious actor with network access to an impacted VMware product may exploit this issue to gain full control of the target system.
- VMSA-2021-0028 - www.vmware.com/security/advisories/VMSA-2021-0028.html