Homepage About Snyk

Open Source Vulnerability Database

The most comprehensive, accurate and timely database for open source vulnerabilities.

Remote Code Execution (RCE)

Affecting org.apache.logging.log4j:log4j-core package, versions

How to fix?

0.0
critical
0.0

Popular vulnerabilities from the last week

Information Exposure

0.0
Affects

node-fetch <2.6.7 || >=3.0.0 <3.1.1 Open this link in a new tab

Cross-site Scripting (XSS)

0.0
Affects

calibreweb [,0.6.15) Open this link in a new tab

Denial of Service (DoS)

0.0
Affects

io.netty:netty-handler [4.0.20.Final,4.0.28.Final) Open this link in a new tab

About Snyk

Snyk is a developer security platform. Integrating directly into development tools, workflows, and automation pipelines, Snyk makes it easy for teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and infrastructure as code. Supported by industry-leading application and security intelligence, Snyk puts security expertise in any developer's toolkit.

Report a new vulnerability
A shield with a tick icon inside, symbolising security