Known vulnerabilities in Apache Foundation Apache Log4j 2.4

Vendor: Apache Foundation
Website: https://www.apache.org
Total Security Bulletins: 7

Security bulletins (7)

Secuity bulletin Severity Status Published
SB2025122245: Missing TLS hostname verification in Apache Log4j Medium
Patched
22.12.2025
SB2022042527: Multiple vulnerabilities in Oracle Retail Financial Integration Medium
Patched
25.04.2022
SB20220422113: Multiple vulnerabilities in Hyperion Data Relationship Management Medium
Patched
22.04.2022
SB2021122816: Remote code execution via JDBC Appender in Apache Log4j Medium
Patched
28.12.2021
SB2021121504: Improper input validation in Apache Log4j High
Patched Exploited
15.12.2021
SB2021121003: Remote code execution in Apache Log4J Critical
Patched Exploited
10.12.2021
SB2017040201: Remote code execution in Apache Log4 High
Patched
02.04.2017