Skip to content

Commit

Permalink
Switch to CVSSv2 for CVE-2017-5645 (#1707)
Browse files Browse the repository at this point in the history
  • Loading branch information
@vy
vy committed Nov 8, 2023
1 parent 0524572 commit e2660a5
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/site/asciidoc/security.adoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -283,7 +283,7 @@ This issue was discovered by Peter Stöckli.
[cols="1h,5"]
|===
|Summary |TCP/UDP socket servers can be exploited to execute arbitrary code
|CVSS 3.x Score & Vector |9.8 CRITICAL (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
|CVSS 2.0 Score & Vector |7.5 HIGH (AV:N/AC:L/Au:N/C:P/I:P/A:P)
|Components affected |`log4j-core`
|Versions affected |`[2.0-alpha1, 2.8.2)`
|Versions fixed |`2.8.2` (Java 7)
Expand Down

0 comments on commit e2660a5

Please sign in to comment.