-
## CVE-2017-5645 - High Severity Vulnerability
Vulnerable Library - log4j-core-2.3.jar
The Apache Log4j Implementation
path: 2/repository/org/apache/logging/log4j/log4j-core/2.3/log4j-core-2.3.jar
…
-
## CVE-2017-5645 - High Severity Vulnerability
Vulnerable Library - log4j-core-2.3.jar
The Apache Log4j Implementation
Path to vulnerable library: madness/sub1/target/madness-sub1-2019.02.01/WEB-INF…
-
I'm not sure where to submit this, since it seems like the DynamoDBLocal doesn't have its own repository.
https://nvd.nist.gov/vuln/detail/CVE-2017-5645
Simply updating to version 2.8.2 should f…
-
## CVE-2017-5645 - High Severity Vulnerability
Vulnerable Library - log4j-core-2.8.1.jar
The Apache Log4j Implementation
Library home page: https://logging.apache.org/log4j/2.x/
Path to dependency f…
-
We did a vulnerability analysis on the latest version of Druid and found the below critical vulnerability in the dependent libraries bundled with Druid. Could you please update the version of these de…
-
[Dependency Checker](https://jeremylong.github.io/DependencyCheck/index.html) reports Jackson-databind and log4j are outdated and have multiple vulnerabilities associated.
```
$ mvn org.owasp:depe…
-
CVE-2017-5645 [ndist](https://nvd.nist.gov/vuln/detail/CVE-2017-5645)
I ran the maven dependency checker
mvn dependency-check:check
And it returned
[ERROR] log4j-core-2.7.jar: CVE-…
-
For all general issues, please provide the following details for fast resolution:
- Version: logstash-input-http 3.2.2
- Operating System: Ubuntu 16.04 LT
After upgrading Logstash to 6.5.0, but…
-
For all general issues, please provide the following details for fast resolution:
- Version: logstash-input-beats 5.1.6
- Operating System: Ubuntu 16.04 LT
After upgrading Logstash to 6.5.0, bu…
-
This application's usage of [org.apache.logging.log4j:log4j-core:2.7](https://ossindex.sonatype.org/component/pkg:maven/org.apache.logging.log4j/log4j-core@2.7) causes a vulnerability to [[CVE-2017-56…