Known vulnerabilities in Apache Foundation Apache Log4j 2.13.1

Known vulnerabilities in Apache Foundation Apache Log4j 2.13.1

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 8

Security bulletins (8)

Secuity bulletin	Severity	Status	Published
SB2025122245: Missing TLS hostname verification in Apache Log4j	Medium	Patched	22.12.2025
SB2022042527: Multiple vulnerabilities in Oracle Retail Financial Integration	Medium	Patched	25.04.2022
SB20220422113: Multiple vulnerabilities in Hyperion Data Relationship Management	Medium	Patched	22.04.2022
SB2021122816: Remote code execution via JDBC Appender in Apache Log4j	Medium	Patched	28.12.2021
SB2021121802: Infinite recursion in Apache Log4j	Medium	Patched	18.12.2021
SB2021121504: Improper input validation in Apache Log4j	High	Patched Exploited	15.12.2021
SB2021121003: Remote code execution in Apache Log4J	Critical	Patched Exploited	10.12.2021
SB2020050406: Improper Certificate Validation in Apache Log4j	Low	Patched	04.05.2020