Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo
cocoapods
Composer
Conan
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
C
Expression Language Injection
apache-log4j2
<2.16.0-1
debian:unstable
15 Dec 2021
H
Improper Input Validation
apache-log4j2
<2.15.0-0.21.10.1
ubuntu:21.10
10 Dec 2021
H
Improper Input Validation
apache-log4j2
<2.10.0-2ubuntu0.1
ubuntu:18.04
10 Dec 2021
H
Improper Input Validation
apache-log4j2
<2.15.0-0.20.04.1
ubuntu:20.04
10 Dec 2021
H
Improper Input Validation
apache-log4j2
<2.15.0-0.21.04.1
ubuntu:21.04
10 Dec 2021
H
Improper Input Validation
apache-log4j2
<2.4-2ubuntu0.1~esm1
ubuntu:16.04
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.15.0-1~deb11u1
debian:11
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.15.0-1
debian:unstable
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.7-2+deb9u1
debian:9
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.15.0-1
debian:13
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.15.0-1
debian:12
10 Dec 2021
C
Improper Input Validation
apache-log4j2
<2.15.0-1~deb10u1
debian:10
10 Dec 2021
L
Improper Certificate Validation
apache-log4j2
<2.12.3-0+deb9u1
debian:9
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
*
debian:8
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
<2.15.0-1~deb10u1
debian:10
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
<2.13.3-1
debian:13
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
<2.13.3-1
debian:unstable
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
<2.13.3-1
debian:11
25 Apr 2020
L
Improper Certificate Validation
apache-log4j2
<2.13.3-1
debian:12
25 Apr 2020
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:10
17 Apr 2017
M
Deserialization of Untrusted Data
apache-log4j2
*
ubuntu:16.04
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
*
debian:8
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:9
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:11
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:12
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:unstable
17 Apr 2017
C
Deserialization of Untrusted Data
apache-log4j2
<2.7-2
debian:13
17 Apr 2017
M
Deserialization of Untrusted Data
eap7-log4j
<0:2.17.1-2.redhat_00002.1.el9eap
rhel:9
26 Mar 2023
M
Creation of Temporary File With Insecure Permissions
eap7-log4j
<0:2.17.1-2.redhat_00002.1.el9eap
rhel:9
26 Mar 2023
M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
eap7-log4j
<0:2.17.1-2.redhat_00002.1.el9eap
rhel:9
20 Mar 2022
