Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

Type maven

Namespace org.ops4j.pax.logging

Name pax-logging-log4j2

Version 1.10.9

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.11.13

Latest_non_vulnerable_version 2.0.14

Affected_by_vulnerabilities

url VCID-rvw9-42ug-qqet

vulnerability_id VCID-rvw9-42ug-qqet

summary Remote code injection in Log4j (through pax-logging-log4j2)

references

reference_url

https://github.com/ops4j/org.ops4j.pax.logging

reference_id

reference_type

scores

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/ops4j/org.ops4j.pax.logging

reference_url

https://github.com/advisories/GHSA-jfh8-c2jp-5v3q

reference_id

GHSA-jfh8-c2jp-5v3q

reference_type

scores

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-jfh8-c2jp-5v3q

reference_url

https://github.com/advisories/GHSA-xxfh-x98p-j8fr

reference_id

GHSA-xxfh-x98p-j8fr

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xxfh-x98p-j8fr

reference_url

https://github.com/ops4j/org.ops4j.pax.logging/security/advisories/GHSA-xxfh-x98p-j8fr

reference_id

GHSA-xxfh-x98p-j8fr

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/ops4j/org.ops4j.pax.logging/security/advisories/GHSA-xxfh-x98p-j8fr

fixed_packages

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.10

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rnp-7w6w-8bhh

vulnerability	VCID-5y4k-pd74-u3bp

vulnerability	VCID-aauw-24tq-nfdc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.10

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.11

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rnp-7w6w-8bhh

vulnerability	VCID-5y4k-pd74-u3bp

vulnerability	VCID-aauw-24tq-nfdc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.11

aliases GHSA-xxfh-x98p-j8fr, GMS-2021-75

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rvw9-42ug-qqet

Fixing_vulnerabilities

url VCID-2rnp-7w6w-8bhh

vulnerability_id VCID-2rnp-7w6w-8bhh

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44832.json

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44832.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-44832

reference_id

reference_type

scores

value	0.53591
scoring_system	epss
scoring_elements	0.98051
published_at	2026-06-14T12:55:00Z

value	0.53591
scoring_system	epss
scoring_elements	0.9805
published_at	2026-06-13T12:55:00Z

value	0.53591
scoring_system	epss
scoring_elements	0.98042
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-44832

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44832
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44832

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/apache/logging-log4j2

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/logging-log4j2

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC

reference_url

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_url

https://security.netapp.com/advisory/ntap-20220104-0001

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220104-0001

reference_url

http://www.openwall.com/lists/oss-security/2021/12/28/1

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

http://www.openwall.com/lists/oss-security/2021/12/28/1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1002813
reference_id	1002813
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1002813

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2035951
reference_id	2035951
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2035951

reference_url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_id

cisco-sa-apache-log4j-qRuKNEbd

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_id

cpuapr2022.html

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_id

cpujan2022.html

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_id

cpujul2022.html

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-44832

reference_id

CVE-2021-44832

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-44832

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/

reference_id

EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/

reference_url

https://github.com/advisories/GHSA-8489-44mv-ggj8

reference_id

GHSA-8489-44mv-ggj8

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-8489-44mv-ggj8

reference_url

https://issues.apache.org/jira/browse/LOG4J2-3293

reference_id

LOG4J2-3293

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://issues.apache.org/jira/browse/LOG4J2-3293

reference_url

https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html

reference_id

msg00036.html

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html

reference_url

https://security.netapp.com/advisory/ntap-20220104-0001/

reference_id

ntap-20220104-0001

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://security.netapp.com/advisory/ntap-20220104-0001/

reference_url	https://access.redhat.com/errata/RHSA-2022:0083
reference_id	RHSA-2022:0083
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0083

reference_url	https://access.redhat.com/errata/RHSA-2022:0138
reference_id	RHSA-2022:0138
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0138

reference_url	https://access.redhat.com/errata/RHSA-2022:0181
reference_id	RHSA-2022:0181
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0181

reference_url	https://access.redhat.com/errata/RHSA-2022:0203
reference_id	RHSA-2022:0203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0203

reference_url	https://access.redhat.com/errata/RHSA-2022:0205
reference_id	RHSA-2022:0205
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0205

reference_url	https://access.redhat.com/errata/RHSA-2022:0216
reference_id	RHSA-2022:0216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0216

reference_url	https://access.redhat.com/errata/RHSA-2022:0222
reference_id	RHSA-2022:0222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0222

reference_url	https://access.redhat.com/errata/RHSA-2022:0223
reference_id	RHSA-2022:0223
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0223

reference_url	https://access.redhat.com/errata/RHSA-2022:0225
reference_id	RHSA-2022:0225
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0225

reference_url	https://access.redhat.com/errata/RHSA-2022:0226
reference_id	RHSA-2022:0226
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0226

reference_url	https://access.redhat.com/errata/RHSA-2022:0227
reference_id	RHSA-2022:0227
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0227

reference_url	https://access.redhat.com/errata/RHSA-2022:0230
reference_id	RHSA-2022:0230
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0230

reference_url	https://access.redhat.com/errata/RHSA-2022:0236
reference_id	RHSA-2022:0236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0236

reference_url	https://access.redhat.com/errata/RHSA-2022:0467
reference_id	RHSA-2022:0467
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0467

reference_url	https://access.redhat.com/errata/RHSA-2022:0485
reference_id	RHSA-2022:0485
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0485

reference_url	https://access.redhat.com/errata/RHSA-2022:0493
reference_id	RHSA-2022:0493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0493

reference_url	https://access.redhat.com/errata/RHSA-2022:1296
reference_id	RHSA-2022:1296
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1296

reference_url	https://access.redhat.com/errata/RHSA-2022:1297
reference_id	RHSA-2022:1297
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1297

reference_url	https://access.redhat.com/errata/RHSA-2022:1299
reference_id	RHSA-2022:1299
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1299

reference_url

https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143

reference_id

s1o5vlo78ypqxnzn6p8zf6t9shtq5143

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf

reference_id

ssa-784507.pdf

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/

reference_id

T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-29T18:53:35Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/

reference_url	https://usn.ubuntu.com/5222-1/
reference_id	USN-5222-1
reference_type
scores
url	https://usn.ubuntu.com/5222-1/

fixed_packages

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rvw9-42ug-qqet

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rvw9-42ug-qqet

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

url	pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.13
purl	pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.13
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.13

url	pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.14
purl	pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.14
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.14

aliases CVE-2021-44832, GHSA-8489-44mv-ggj8

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2rnp-7w6w-8bhh

url VCID-5y4k-pd74-u3bp

vulnerability_id VCID-5y4k-pd74-u3bp

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45105.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45105.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45105

reference_id

reference_type

scores

value	0.74016
scoring_system	epss
scoring_elements	0.98854
published_at	2026-06-12T12:55:00Z

value	0.74016
scoring_system	epss
scoring_elements	0.98855
published_at	2026-06-14T12:55:00Z

value	0.74016
scoring_system	epss
scoring_elements	0.98849
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45105

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EOKPQGV24RRBBI4TBZUDQMM4MEH7MXCY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIG7FZULMNK2XF6FZRU4VWYDQXNMUGAJ/

reference_url

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_url

https://security.netapp.com/advisory/ntap-20211218-0001

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20211218-0001

reference_url

https://www.zerodayinitiative.com/advisories/ZDI-21-1541

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.zerodayinitiative.com/advisories/ZDI-21-1541

reference_url

http://www.openwall.com/lists/oss-security/2021/12/19/1

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

http://www.openwall.com/lists/oss-security/2021/12/19/1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001891
reference_id	1001891
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001891

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2034067
reference_id	2034067
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2034067

reference_url

https://www.kb.cert.org/vuls/id/930724

reference_id

930724

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.kb.cert.org/vuls/id/930724

reference_url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_id

cisco-sa-apache-log4j-qRuKNEbd

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd

reference_url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_id

cpuapr2022.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_id

cpujan2022.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_id

cpujul2022.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-45105

reference_id

CVE-2021-45105

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-45105

reference_url

https://www.debian.org/security/2021/dsa-5024

reference_id

dsa-5024

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.debian.org/security/2021/dsa-5024

reference_url

https://github.com/advisories/GHSA-p6xc-xr62-6r2g

reference_id

GHSA-p6xc-xr62-6r2g

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-p6xc-xr62-6r2g

reference_url

https://security.netapp.com/advisory/ntap-20211218-0001/

reference_id

ntap-20211218-0001

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://security.netapp.com/advisory/ntap-20211218-0001/

reference_url	https://access.redhat.com/errata/RHSA-2022:0026
reference_id	RHSA-2022:0026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0026

reference_url	https://access.redhat.com/errata/RHSA-2022:0042
reference_id	RHSA-2022:0042
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0042

reference_url	https://access.redhat.com/errata/RHSA-2022:0043
reference_id	RHSA-2022:0043
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0043

reference_url	https://access.redhat.com/errata/RHSA-2022:0044
reference_id	RHSA-2022:0044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0044

reference_url	https://access.redhat.com/errata/RHSA-2022:0047
reference_id	RHSA-2022:0047
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0047

reference_url	https://access.redhat.com/errata/RHSA-2022:0083
reference_id	RHSA-2022:0083
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0083

reference_url	https://access.redhat.com/errata/RHSA-2022:0203
reference_id	RHSA-2022:0203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0203

reference_url	https://access.redhat.com/errata/RHSA-2022:0205
reference_id	RHSA-2022:0205
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0205

reference_url	https://access.redhat.com/errata/RHSA-2022:0216
reference_id	RHSA-2022:0216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0216

reference_url	https://access.redhat.com/errata/RHSA-2022:0219
reference_id	RHSA-2022:0219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0219

reference_url	https://access.redhat.com/errata/RHSA-2022:0222
reference_id	RHSA-2022:0222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0222

reference_url	https://access.redhat.com/errata/RHSA-2022:0223
reference_id	RHSA-2022:0223
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0223

reference_url	https://access.redhat.com/errata/RHSA-2022:1296
reference_id	RHSA-2022:1296
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1296

reference_url	https://access.redhat.com/errata/RHSA-2022:1297
reference_id	RHSA-2022:1297
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1297

reference_url	https://access.redhat.com/errata/RHSA-2022:1299
reference_id	RHSA-2022:1299
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1299

reference_url	https://access.redhat.com/errata/RHSA-2022:1462
reference_id	RHSA-2022:1462
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1462

reference_url	https://access.redhat.com/errata/RHSA-2022:1463
reference_id	RHSA-2022:1463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1463

reference_url	https://access.redhat.com/errata/RHSA-2022:1469
reference_id	RHSA-2022:1469
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1469

reference_url

https://logging.apache.org/log4j/2.x/security.html

reference_id

security.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://logging.apache.org/log4j/2.x/security.html

reference_url

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032

reference_id

SNWLID-2021-0032

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf

reference_id

ssa-479842.pdf

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-501673.pdf

reference_id

ssa-501673.pdf

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://cert-portal.siemens.com/productcert/pdf/ssa-501673.pdf

reference_url	https://usn.ubuntu.com/5203-1/
reference_id	USN-5203-1
reference_type
scores
url	https://usn.ubuntu.com/5203-1/

reference_url	https://usn.ubuntu.com/5222-1/
reference_id	USN-5222-1
reference_type
scores
url	https://usn.ubuntu.com/5222-1/

reference_url

https://www.zerodayinitiative.com/advisories/ZDI-21-1541/

reference_id

ZDI-21-1541

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-29T11:45:21Z/

url

https://www.zerodayinitiative.com/advisories/ZDI-21-1541/

fixed_packages

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rvw9-42ug-qqet

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.9.2

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rvw9-42ug-qqet

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.12

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rnp-7w6w-8bhh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.11.12

url pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.13

purl pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rnp-7w6w-8bhh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@2.0.13

aliases CVE-2021-45105, GHSA-p6xc-xr62-6r2g

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5y4k-pd74-u3bp

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.ops4j.pax.logging/pax-logging-log4j2@1.10.9

Package Instance