apache-log4j1.2 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the apache-log4j1.2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M SQL Injection	<1.2.17-9ubuntu0.2
M Deserialization of Untrusted Data	<1.2.17-9ubuntu0.2
L Deserialization of Untrusted Data	<1.2.17-9ubuntu0.2
M Deserialization of Untrusted Data	<1.2.17-9ubuntu0.1