pkg:Debian/apache-log4j1.2

9 total CVEsCRITICAL5HIGH4

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2022-23305SQL Injection in Log4j 1.2.x
    from 0, < 1.2.17-10+deb11u1
  • CRITICAL9.8CVE-2022-23307Deserialization of Untrusted Data in Apache Log4j
    from 0, < 1.2.17-10+deb11u1
  • CRITICAL9.8CVE-2019-17571apache-log4j1.2 - security update
    from 0, < 1.2.17-7+deb9u1
  • CRITICAL9.8CVE-2019-17571apache-log4j1.2 - security update
    from 0, < 1.2.17-5+deb8u1
  • CRITICAL9.8CVE-2019-17571apache-log4j1.2 - security update
    from 0, < 1.2.17-9
  • HIGH8.8CVE-2022-23302Deserialization of Untrusted Data in Log4j 1.x
    from 0, < 1.2.17-10+deb11u1
  • HIGH7.5CVE-2026-34480Apache Log4j Core: Silent log event loss in XmlLayout due to unescaped XML 1.0 forbidden characters
    from 0
  • HIGH7.5CVE-2021-4104apache-log4j1.2 - security update
    from 0, < 1.2.17-7+deb9u2
  • HIGH7.5CVE-2021-4104apache-log4j1.2 - security update
    from 0, < 1.2.17-10+deb11u1