uk.co.nichesolutions.logging.log4j:log4j-core
uk.co.nichesolutions.logging.log4j:log4j-core has 1 known security vulnerability in Maven (Java). Review the table below for affected and fixed versions. Data sourced from OSV, enriched with EPSS exploit probability and CISA KEV.
Is uk.co.nichesolutions.logging.log4j:log4j-core in your project?
Check if you're affected by these 1 vulnerability.
Active Exploitation Warning
One or more vulnerabilities in this package are known to be actively exploited in the wild. Immediate action is recommended.
Vulnerabilities
1 unique vulnerability — sorted by severity. Click a CVE/GHSA ID for full details.
| CVE / GHSA | Severity | Affected | Fixed In |
|---|---|---|---|
| GHSA-jfh8-c2jp-5v3q Remote code injection in Log4j | CRITICAL | 2.6.3-CUSTOM | No fix available |
About This Data
Vulnerability data for uk.co.nichesolutions.logging.log4j:log4j-core is sourced from the Open Source Vulnerability (OSV) database, aggregating reports from GitHub Advisory Database, NIST NVD, and ecosystem-specific sources.
CVSS (Common Vulnerability Scoring System) scores reflect exploitability and impact. EPSS (Exploit Prediction Scoring System) scores indicate the probability of exploitation within the next 30 days. Vulnerabilities marked with are listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
Check Your Dependencies
Scan your project to check if you're using a vulnerable version of uk.co.nichesolutions.logging.log4j:log4j-core.