org.ops4j.pax.logging:pax-logging-log4j2 vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2021-44832Mediumorg.apache.logging.log4j:log4j-core: Improper Input Validation and Injection in Apache Log4j2CVE-2021-45105Highorg.apache.logging.log4j:log4j-core: Apache Log4j2 vulnerable to Improper Input Validation and Uncontrolled RecursionCVE-2021-45046Criticalorg.apache.logging.log4j:log4j-core: Incomplete fix for Apache Log4j vulnerabilityGHSA-XXFH-X98P-J8FRCriticalorg.ops4j.pax.logging:pax-logging-log4j2: Remote code injection in Log4j (through pax-logging-log4j2)CVE-2021-44228Criticalorg.apache.logging.log4j:log4j-core: Remote code injection in Log4j

Stop the waste.
Protect your environment with Kodem.