Loading...

XML

Word

Printable

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 4.8.10
Affects Version/s: 4.8.9
Component/s: None
Labels:

CVSS Score:
8.1
CVSS Severity:
High
CVE ID:
CVE-2022-23305

Crucible in version 4.8.9 and older uses a log4j library that has the following vulnerabilities:

CVE-2022-23302
CVE-2022-23305
CVE-2022-23307 / CVE-2020-9493

Crucible 4.8.10 uses a custom-built log4j, which has the above vulnerabilities fixed.

Assignee:: Unassigned
Reporter:: Security Metrics Bot
Votes:: 0 Vote for this issue
Watchers:: 0 Start watching this issue

Created:: 04/Jul/2022 12:01 PM
Updated:: 05/Nov/2023 8:28 PM
Resolved:: 02/Nov/2023 6:34 PM