-
**Vulnerabilities**
DepShield reports that this application's usage of [log4j:log4j:1.2.17](https://ossindex.sonatype.org/component/pkg:maven/log4j/log4j@1.2.17) results in the following vulnerabilit…
-
Is couchdb-lucene affected by any of the following vulnerabilities reported against log4j. And what are plans to fix them?
CVE-2022-23307 CVE-2021-44228 CVE-2021-45046 CVE-2021-4104 CVE-2019-17571 …
-
**What would you like to be added**:
Some way to ignore Java test dependencies like this vulnerable-legacy log4j:
```xml
log4j
log4j
1.2.17
test
```
**Why is this nee…
-
The java_query example has a dependency on log4j 1.2.17 in pom.xml:
log4j
log4j
1.2.17
Although this is only sample code, you should still remediate this vulnerab…
-
Vulnerable Library - slf4j-log4j12-1.5.0.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/log4j/log4j/1.2.13/log4j-1.2.13.jar
Found in HEAD comm…
-
Vulnerable Library - slf4j-log4j12-1.5.0.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/log4j/log4j/1.2.13/log4j-1.2.13.jar
Found in HEAD comm…
-
Vulnerable Library - log4j-1.2.13.jar
Log4j
Library home page: http://logging.apache.org/log4j/docs/
Path to dependency file: /pom.xml
Path to vulnerable library: /target/easybuggy-1-SNAPSHOT/WEB-IN…
-
Vulnerable Library - log4j-1.2.13.jar
Log4j
Library home page: http://logging.apache.org/log4j/docs/
Path to dependency file: /pom.xml
Path to vulnerable library: /target/easybuggy-1-SNAPSHOT/WEB-IN…
-
Vulnerable Library - slf4j-log4j12-1.5.0.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/log4j/log4j/1.2.13/log4j-1.2.13.jar
Found in HEAD comm…
-
Security findings found via Trivy when using that need to be resolved. Unsure if this should be reported here or upstream.
In summary there are 5 medium and 4 high CVE vulnerabilities that can be r…