CVE-2018-1285

CRITICAL

Apache log4net < 2.0.10 - XML External Entity Injection in Configuration Parser

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-1285. PoCs published by alex-ermolaev.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2018-1285, targeting SolarWinds SNMP functionality. The code demonstrates how to trigger the vulnerability by manipulating SNMP requests, leveraging log4net assembly loading.

Description

Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.

Exploits (1)

nomisec WORKING POC 1 stars

by alex-ermolaev · poc

https://github.com/alex-ermolaev/Log4NetSolarWindsSNMP-

View Code ZIP pw:eip

This repository contains a proof-of-concept exploit for CVE-2018-1285, targeting SolarWinds SNMP functionality. The code demonstrates how to trigger the vulnerability by manipulating SNMP requests, leveraging log4net assembly loading.

Classification

Working Poc 80%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SolarWinds SNMP (versions affected by CVE-2018-1285)

No auth needed

Prerequisites: Access to a vulnerable SolarWinds SNMP service · Ability to send crafted SNMP requests

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (17)

Core 17

Core References

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E

Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpujan2021.html

Mailing List, Vendor Advisory x_refsource_misc

https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E

Issue Tracking, Vendor Advisory x_refsource_misc

https://issues.apache.org/jira/browse/LOG4NET-575

Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuApr2021.html

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuapr2022.html

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20220909-0001/

Scores

CVSS v3 9.8

EPSS 0.6733

EPSS Percentile 98.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-611

Status published

Products (12)

apache/log4net < 2.0.10

fedoraproject/fedora 30

fedoraproject/fedora 31

fedoraproject/fedora 32

netapp/manageability_software_development_kit

netapp/snapcenter

nuget/log4net 0 - 2.0.10NuGet

oracle/application_testing_suite 13.3.0.1

oracle/hospitality_opera_5 5.5

oracle/hospitality_opera_5 5.6

... and 2 more

Published May 11, 2020

Tracked Since Feb 18, 2026