SLF4J / SLF4J-538 [Open] There are high-risk vulnerabilities in Apache Log4j 1.x of SLF4J ============================== Here's what changed in this issue in the last few minutes. This issue has been created This issue is now assigned to you. View or comment on issue using this link https://jira.qos.ch/browse/SLF4J-538 ============================== Issue created ------------------------------ zhengqin created this issue on 22/Jan/22 3:01 AM Summary: There are high-risk vulnerabilities in Apache Log4j 1.x of SLF4J Issue Type: Bug Affects Versions: 1.7.30, 1.7.31, 1.7.32, 1.7.33 Assignee: SLF4J developers list Created: 22/Jan/22 3:01 AM Labels: vulnerabilities Priority: Critical Reporter: zhengqin Severity: critical Description: [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23307] [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23305] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23302 ============================== This message was sent by Atlassian Jira (v8.8.0#808000-sha1:e2c7e59)